Уязвимость CVE-2016-3142

Пакет	Статус	Версия исправления	Релиз	Тип
php5	fixed	5.6.19+dfsg-1		package
php5	fixed	5.6.19+dfsg-0+deb8u1	jessie	package
php5	no-dsa		wheezy	package

CVE-2016-3142

CVSS3: 8.2

ubuntu

больше 9 лет назад

The phar_parse_zipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) by placing a PK\x05\x06 signature at an invalid location.

CVE-2016-3142

redhat

больше 9 лет назад

The phar_parse_zipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) by placing a PK\x05\x06 signature at an invalid location.

CVE-2016-3142

CVSS3: 8.2

nvd

больше 9 лет назад

The phar_parse_zipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) by placing a PK\x05\x06 signature at an invalid location.

GHSA-7g35-c4vm-hp9f

CVSS3: 8.2

github

больше 3 лет назад

The phar_parse_zipfile function in zip.c in the PHAR extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (out-of-bounds read and application crash) by placing a PK\x05\x06 signature at an invalid location.

BDU:2016-00908

fstec

больше 9 лет назад

Уязвимость интерпретатора PHP, позволяющая нарушителю получить конфиденциальную информацию или вызвать отказ в обслуживании

exploitDog

CVE-2016-3142

Описание

Пакеты

Примечания

Связанные уязвимости