Описание
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 6 | php | Out of support scope | ||
| Red Hat Enterprise Linux 7 | php | Out of support scope | ||
| Red Hat Enterprise Linux 8 | php:7.4/php | Fix deferred | ||
| Red Hat Enterprise Linux 9 | php | Fix deferred | ||
| Red Hat Enterprise Linux 9 | php:8.1/php | Fix deferred | ||
| Red Hat Software Collections | rh-php73-php | Fix deferred | ||
| Red Hat Enterprise Linux 8 | php | Fixed | RHSA-2023:0848 | 21.02.2023 |
Показывать по
10
Дополнительная информация
Статус:
Low
Дефект:
CWE-787
https://bugzilla.redhat.com/show_bug.cgi?id=2179880php: potential buffer overflow in php_cli_server_startup_workers
EPSS
Процентиль: 27%
0.0009
Низкий
6.2 Medium
CVSS3
Связанные уязвимости
CVSS3: 6.2
ubuntu
больше 1 года назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
nvd
больше 1 года назад
A vulnerability was found in PHP where setting the environment variable PHP_CLI_SERVER_WORKERS to a large value leads to a heap buffer overflow.
CVSS3: 6.2
debian
больше 1 года назад
A vulnerability was found in PHP where setting the environment variabl ...
EPSS
Процентиль: 27%
0.0009
Низкий
6.2 Medium
CVSS3