rpm package
opensuse/php5&distro=openSUSE Tumbleweed
pkg:rpm/opensuse/php5&distro=openSUSE%20Tumbleweed
Vulnerabilities (71)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2011-1153 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Mar 16, 2011 | Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dependent attackers to obtain sensitive information from process memory, cause a denial of service (memory corruption), or possibly execute arbitrary code via form | ||
| CVE-2011-1092 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Mar 15, 2011 | Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function. | ||
| CVE-2011-0420 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Feb 19, 2011 | The grapheme_extract function in the Internationalization extension (Intl) for ICU for PHP 5.3.5 allows context-dependent attackers to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference. | ||
| CVE-2006-7243 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Jan 18, 2011 | PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists functio | ||
| CVE-2010-4645 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Jan 11, 2011 | strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handle | ||
| CVE-2010-4150 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Dec 7, 2010 | Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors. | ||
| CVE-2010-3709 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Nov 9, 2010 | The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ZIP archive. | ||
| CVE-2010-3436 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Nov 9, 2010 | fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass open_basedir restrictions via vectors related to the length of a filename. | ||
| CVE-2010-3710 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Oct 25, 2010 | Stack consumption vulnerability in the filter_var function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3, when FILTER_VALIDATE_EMAIL mode is used, allows remote attackers to cause a denial of service (memory consumption and application crash) via a long e-mail address strin | ||
| CVE-2010-2950 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Sep 28, 2010 | Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the phar_str | ||
| CVE-2010-2225 | — | < 5.6.28-1.1 | 5.6.28-1.1 | Jun 24, 2010 | Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function. |
- CVE-2011-1153Mar 16, 2011affected < 5.6.28-1.1fixed 5.6.28-1.1
Multiple format string vulnerabilities in phar_object.c in the phar extension in PHP 5.3.5 and earlier allow context-dependent attackers to obtain sensitive information from process memory, cause a denial of service (memory corruption), or possibly execute arbitrary code via form
- CVE-2011-1092Mar 15, 2011affected < 5.6.28-1.1fixed 5.6.28-1.1
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.
- CVE-2011-0420Feb 19, 2011affected < 5.6.28-1.1fixed 5.6.28-1.1
The grapheme_extract function in the Internationalization extension (Intl) for ICU for PHP 5.3.5 allows context-dependent attackers to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference.
- CVE-2006-7243Jan 18, 2011affected < 5.6.28-1.1fixed 5.6.28-1.1
PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file extension after this character, as demonstrated by .php\0.jpg at the end of the argument to the file_exists functio
- CVE-2010-4645Jan 11, 2011affected < 5.6.28-1.1fixed 5.6.28-1.1
strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handle
- CVE-2010-4150Dec 7, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.
- CVE-2010-3709Nov 9, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ZIP archive.
- CVE-2010-3436Nov 9, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass open_basedir restrictions via vectors related to the length of a filename.
- CVE-2010-3710Oct 25, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
Stack consumption vulnerability in the filter_var function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3, when FILTER_VALIDATE_EMAIL mode is used, allows remote attackers to cause a denial of service (memory consumption and application crash) via a long e-mail address strin
- CVE-2010-2950Sep 28, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
Format string vulnerability in stream.c in the phar extension in PHP 5.3.x through 5.3.3 allows context-dependent attackers to obtain sensitive information (memory contents) and possibly execute arbitrary code via a crafted phar:// URI that is not properly handled by the phar_str
- CVE-2010-2225Jun 24, 2010affected < 5.6.28-1.1fixed 5.6.28-1.1
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.
Page 4 of 4