Уязвимость CVE-2016-9936

Пакет	Статус	Версия исправления	Релиз	Тип
php7.0	fixed	7.0.14-1		package

CVE-2016-9936

CVSS3: 9.8

ubuntu

больше 8 лет назад

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

CVE-2016-9936

CVSS3: 7.5

redhat

больше 8 лет назад

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

CVE-2016-9936

CVSS3: 9.8

nvd

больше 8 лет назад

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

GHSA-jp9f-r2q5-mv5q

CVSS3: 9.8

github

больше 3 лет назад

The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly have unspecified other impact via crafted serialized data. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-6834.

BDU:2017-01660

fstec

больше 8 лет назад

Уязвимость реализации компонентов в ext/standard/var.c интерпретатора PHP, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

exploitDog

CVE-2016-9936

Описание

Пакеты

Примечания

Связанные уязвимости