Showing 1 - 1 of 1

CVE-2017-12932

Status Candidate

Overview

ext/standard/var_unserializer.re in PHP 7.0.x through 7.0.22 and 7.1.x through 7.1.8 is prone to a heap use after free while unserializing untrusted data, related to improper use of the hash API for key deletion in a situation with an invalid array size. Exploitation of this issue can have an unspecified impact on the integrity of PHP.

Related Files

Gentoo Linux Security Advisory 201709-21: Posted Sep 25, 2017; Authored by Gentoo | Site security.gentoo.org; Gentoo Linux Security Advisory 201709-21 - Multiple vulnerabilities have been found in PHP, the worst of which could result in the execution of arbitrary code. Versions less than 5.6.31:5.6 are affected.; tags | advisory, arbitrary, php, vulnerability; systems | linux, gentoo; advisories | CVE-2017-11362, CVE-2017-11628, CVE-2017-12932; MD5 | e37ef91858dce51d5410cc67c898748f; Download | Favorite | Comments (0)

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 49 files
Ubuntu 35 files
Gentoo 33 files
Ihsan Sencan 30 files
Google Security Research 23 files
Debian 11 files
Apple 10 files
hyp3rlinx 10 files
8bitsec 8 files
HP 6 files

File Archives

Systems

AIX (407)
Apple (1,484)
BSD (329)
Cisco (1,790)
Debian (5,345)
Fedora (1,675)
FreeBSD (1,183)
Gentoo (3,467)
HPUX (863)
iOS (153)
iPhone (103)
IRIX (219)
Juniper (66)
Linux (32,284)
Mac OS X (649)
Mandriva (3,105)
NetBSD (253)
OpenBSD (454)
RedHat (6,056)
Slackware (792)
Solaris (1,565)
SUSE (1,444)
Ubuntu (5,315)
UNIX (8,159)
UnixWare (170)
Windows (5,206)
Other

CVE-2017-12932

Overview

Related Files

File Archive:

October 2017

Top Authors In Last 30 Days

File Tags

File Archives

Systems