ELSA-2018-0406

Опубликовано: 07 мар. 2018

Источник: oracle-oval

Платформа: Oracle Linux 7

Описание

ELSA-2018-0406: php security update (MODERATE)

[5.4.16-43.1]

gd: fix buffer over-read into uninitialized memory CVE-2017-7890

Обновленные пакеты

Oracle Linux 7

Oracle Linux x86_64

php

5.4.16-43.el7_4.1

php-bcmath

5.4.16-43.el7_4.1

php-cli

5.4.16-43.el7_4.1

php-common

5.4.16-43.el7_4.1

php-dba

5.4.16-43.el7_4.1

php-devel

5.4.16-43.el7_4.1

php-embedded

5.4.16-43.el7_4.1

php-enchant

5.4.16-43.el7_4.1

php-fpm

5.4.16-43.el7_4.1

php-gd

5.4.16-43.el7_4.1

php-intl

5.4.16-43.el7_4.1

php-ldap

5.4.16-43.el7_4.1

php-mbstring

5.4.16-43.el7_4.1

php-mysql

5.4.16-43.el7_4.1

php-mysqlnd

5.4.16-43.el7_4.1

php-odbc

5.4.16-43.el7_4.1

php-pdo

5.4.16-43.el7_4.1

php-pgsql

5.4.16-43.el7_4.1

php-process

5.4.16-43.el7_4.1

php-pspell

5.4.16-43.el7_4.1

php-recode

5.4.16-43.el7_4.1

php-snmp

5.4.16-43.el7_4.1

php-soap

5.4.16-43.el7_4.1

php-xml

5.4.16-43.el7_4.1

php-xmlrpc

5.4.16-43.el7_4.1

Связанные CVE

CVE-2017-7890

Ссылки на источники

Связанные уязвимости

CVE-2017-7890

CVSS3: 6.5

ubuntu

почти 8 лет назад

The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library (aka libgd), as used in PHP before 5.6.31 and 7.x before 7.1.7, does not zero colorMap arrays before use. A specially crafted GIF image could use the uninitialized tables to read ~700 bytes from the top of the stack, potentially disclosing sensitive information.