Количество 17
Количество 17
BDU:2019-01552
Уязвимость функции чтения PHAR интерпретатора языка программирования PHP, связанная с чтением за пределами границ буфера памяти, позволяющая нарушителю вызвать отказ в обслуживании, нарушить конфиденциальность и целостность защищаемых данных
CVE-2019-9021
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
CVE-2019-9021
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
CVE-2019-9021
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
CVE-2019-9021
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x ...
GHSA-3fr9-q295-2jq3
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
openSUSE-SU-2019:1256-1
Security update for php5
SUSE-SU-2019:0985-1
Security update for php5
SUSE-RU-2019:0823-1
Optional update for php72
openSUSE-SU-2019:1293-1
Security update for php7
SUSE-SU-2019:14013-1
Security update for php53
openSUSE-SU-2019:1573-1
Security update for php7
openSUSE-SU-2019:1572-1
Security update for php7
SUSE-SU-2019:1461-1
Security update for php7
RLSA-2020:1624
Moderate: php:7.2 security, bug fix, and enhancement update
ELSA-2020-1624
ELSA-2020-1624: php:7.2 security, bug fix, and enhancement update (MODERATE)
SUSE-SU-2022:4067-1
Security update for php7
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | BDU:2019-01552 Уязвимость функции чтения PHAR интерпретатора языка программирования PHP, связанная с чтением за пределами границ буфера памяти, позволяющая нарушителю вызвать отказ в обслуживании, нарушить конфиденциальность и целостность защищаемых данных | CVSS3: 9.8 | 30% Средний | больше 6 лет назад |
 | CVE-2019-9021 An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c. | CVSS3: 9.8 | 30% Средний | больше 6 лет назад |
 | CVE-2019-9021 An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c. | CVSS3: 5.3 | 30% Средний | больше 6 лет назад |
 | CVE-2019-9021 An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c. | CVSS3: 9.8 | 30% Средний | больше 6 лет назад |
| CVE-2019-9021 An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x ... | CVSS3: 9.8 | 30% Средний | больше 6 лет назад |
| GHSA-3fr9-q295-2jq3 An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c. | CVSS3: 9.8 | 30% Средний | около 3 лет назад |
 | openSUSE-SU-2019:1256-1 Security update for php5 | около 6 лет назад | ||
| SUSE-SU-2019:0985-1 Security update for php5 | около 6 лет назад | ||
| SUSE-RU-2019:0823-1 Optional update for php72 | около 6 лет назад | ||
| openSUSE-SU-2019:1293-1 Security update for php7 | около 6 лет назад | ||
| SUSE-SU-2019:14013-1 Security update for php53 | около 6 лет назад | ||
| openSUSE-SU-2019:1573-1 Security update for php7 | около 6 лет назад | ||
| openSUSE-SU-2019:1572-1 Security update for php7 | около 6 лет назад | ||
| SUSE-SU-2019:1461-1 Security update for php7 | около 6 лет назад | ||
 | RLSA-2020:1624 Moderate: php:7.2 security, bug fix, and enhancement update | около 5 лет назад | ||
| ELSA-2020-1624 ELSA-2020-1624: php:7.2 security, bug fix, and enhancement update (MODERATE) | около 5 лет назад | ||
| SUSE-SU-2022:4067-1 Security update for php7 | больше 2 лет назад |
Уязвимостей на страницу