|
|
Log in / Subscribe / Register

php5: code execution

Package(s):php5 CVE #(s):CVE-2015-3330 CVE-2015-3329
Created:April 21, 2015 Updated:June 25, 2015
Description: From the Ubuntu advisory:

It was discovered that PHP incorrectly handled cleanup when used with Apache 2.4. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2015-3330)

It was discovered that PHP incorrectly handled opening tar, zip or phar archives through the PHAR extension. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2015-3329)

Alerts:
SUSE SUSE-SU-2016:1638-1 php53 2016-06-21
Gentoo 201606-10 php 2016-06-19
Scientific Linux SLSA-2015:1218-1 php 2015-07-09
Oracle ELSA-2015-1218 php 2015-07-09
CentOS CESA-2015:1218 php 2015-07-09
Red Hat RHSA-2015:1218-01 php 2015-07-09
Scientific Linux SLSA-2015:1135-1 php 2015-06-24
Red Hat RHSA-2015:1187-01 rh-php56-php 2015-06-25
Red Hat RHSA-2015:1186-01 php55-php 2015-06-25
Oracle ELSA-2015-1135 php 2015-06-23
CentOS CESA-2015:1135 php 2015-06-24
Red Hat RHSA-2015:1135-01 php 2015-06-23
SUSE SUSE-SU-2015:0868-1 php5 2015-05-13
openSUSE openSUSE-SU-2015:0855-1 php5 2015-05-12
Debian DSA-3280-1 php5 2015-06-07
Debian-LTS DLA-212-1 php5 2015-04-29
Mandriva MDVSA-2015:209 php 2015-04-27
Mageia MGASA-2015-0169 php 2015-04-25
Fedora FEDORA-2015-6399 php 2015-04-27
Slackware SSA:2015-111-10 php 2015-04-21
Ubuntu USN-2572-1 php5 2015-04-20
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds