vulnerability

Amazon Linux AMI: Security patch for php56, php55 (ALAS-2016-640) (CVE-2016-1903)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
6	(AV:N/AC:L/Au:N/C:P/I:N/A:P)	Jan 19, 2016	Jan 21, 2016	Oct 30, 2017

Severity

CVSS

(AV:N/AC:L/Au:N/C:P/I:N/A:P)

Published

Jan 19, 2016

Added

Jan 21, 2016

Modified

Oct 30, 2017

Description

The gdImageRotateInterpolated function in ext/gd/libgd/gd_interpolation.c in PHP before 5.5.31, 5.6.x before 5.6.17, and 7.x before 7.0.2 allows remote attackers to obtain sensitive information or cause a denial of service (out-of-bounds read and application crash) via a large bgd_color argument to the imagerotate function.

Solutions

amazon-linux-upgrade-php55amazon-linux-upgrade-php55-bcmathamazon-linux-upgrade-php55-cliamazon-linux-upgrade-php55-commonamazon-linux-upgrade-php55-dbaamazon-linux-upgrade-php55-debuginfoamazon-linux-upgrade-php55-develamazon-linux-upgrade-php55-embeddedamazon-linux-upgrade-php55-enchantamazon-linux-upgrade-php55-fpmamazon-linux-upgrade-php55-gdamazon-linux-upgrade-php55-gmpamazon-linux-upgrade-php55-imapamazon-linux-upgrade-php55-intlamazon-linux-upgrade-php55-ldapamazon-linux-upgrade-php55-mbstringamazon-linux-upgrade-php55-mcryptamazon-linux-upgrade-php55-mssqlamazon-linux-upgrade-php55-mysqlndamazon-linux-upgrade-php55-odbcamazon-linux-upgrade-php55-opcacheamazon-linux-upgrade-php55-pdoamazon-linux-upgrade-php55-pgsqlamazon-linux-upgrade-php55-processamazon-linux-upgrade-php55-pspellamazon-linux-upgrade-php55-recodeamazon-linux-upgrade-php55-snmpamazon-linux-upgrade-php55-soapamazon-linux-upgrade-php55-tidyamazon-linux-upgrade-php55-xmlamazon-linux-upgrade-php55-xmlrpcamazon-linux-upgrade-php56amazon-linux-upgrade-php56-bcmathamazon-linux-upgrade-php56-cliamazon-linux-upgrade-php56-commonamazon-linux-upgrade-php56-dbaamazon-linux-upgrade-php56-dbgamazon-linux-upgrade-php56-debuginfoamazon-linux-upgrade-php56-develamazon-linux-upgrade-php56-embeddedamazon-linux-upgrade-php56-enchantamazon-linux-upgrade-php56-fpmamazon-linux-upgrade-php56-gdamazon-linux-upgrade-php56-gmpamazon-linux-upgrade-php56-imapamazon-linux-upgrade-php56-intlamazon-linux-upgrade-php56-ldapamazon-linux-upgrade-php56-mbstringamazon-linux-upgrade-php56-mcryptamazon-linux-upgrade-php56-mssqlamazon-linux-upgrade-php56-mysqlndamazon-linux-upgrade-php56-odbcamazon-linux-upgrade-php56-opcacheamazon-linux-upgrade-php56-pdoamazon-linux-upgrade-php56-pgsqlamazon-linux-upgrade-php56-processamazon-linux-upgrade-php56-pspellamazon-linux-upgrade-php56-recodeamazon-linux-upgrade-php56-snmpamazon-linux-upgrade-php56-soapamazon-linux-upgrade-php56-tidyamazon-linux-upgrade-php56-xmlamazon-linux-upgrade-php56-xmlrpc

References

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today