|
|
Log in / Subscribe / Register

php: information disclosure

Package(s):php CVE #(s):CVE-2015-2783
Created:April 17, 2015 Updated:June 25, 2015
Description:

From the Arch Linux advisory:

The vulnerability can be triggered when parsing a PHAR file at phar.c:623. The "buf_len" is obtained from the phar file and passed into php_var_unserialize() as the max argument. Under normal php_var_unserialize() circumstances, YYCURSOR will always be <= max. This however can be bypassed when processing a malform phar with a buf_len that is shorter then the string to be unserialized resulting in a memory info leak.

Alerts:
SUSE SUSE-SU-2016:1638-1 php53 2016-06-21
Gentoo 201606-10 php 2016-06-19
Scientific Linux SLSA-2015:1218-1 php 2015-07-09
Oracle ELSA-2015-1218 php 2015-07-09
CentOS CESA-2015:1218 php 2015-07-09
Red Hat RHSA-2015:1218-01 php 2015-07-09
Scientific Linux SLSA-2015:1135-1 php 2015-06-24
Red Hat RHSA-2015:1187-01 rh-php56-php 2015-06-25
Red Hat RHSA-2015:1186-01 php55-php 2015-06-25
Oracle ELSA-2015-1135 php 2015-06-23
CentOS CESA-2015:1135 php 2015-06-24
Red Hat RHSA-2015:1135-01 php 2015-06-23
SUSE SUSE-SU-2015:0868-1 php5 2015-05-13
openSUSE openSUSE-SU-2015:0855-1 php5 2015-05-12
Debian DSA-3280-1 php5 2015-06-07
Debian-LTS DLA-212-1 php5 2015-04-29
Mandriva MDVSA-2015:209 php 2015-04-27
Mageia MGASA-2015-0169 php 2015-04-25
Fedora FEDORA-2015-6399 php 2015-04-27
Fedora FEDORA-2015-6407 php 2015-04-23
Slackware SSA:2015-111-10 php 2015-04-21
Ubuntu USN-2572-1 php5 2015-04-20
Arch Linux ASA-201504-14 php 2015-04-17
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds