vulnerability

FreeBSD: php -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
10	(AV:N/AC:L/Au:N/C:C/I:C/A:C)	Mar 31, 2016	Apr 4, 2016	Feb 19, 2025

Severity

CVSS

(AV:N/AC:L/Au:N/C:C/I:C/A:C)

Published

Mar 31, 2016

Added

Apr 4, 2016

Modified

Feb 19, 2025

Description

The PHP Group reports:

Fileinfo:

Fixed bug #71527 (Buffer over-write in finfo_open with
malformed magic file).

mbstring:

Fixed bug #71906 (AddressSanitizer: negative-size-param (-1)
in mbfl_strcut).

Phar:

Fixed bug #71860 (Invalid memory write in phar on filename with
\0 in name).

SNMP:

Fixed bug #71704 (php_snmp_error() Format String Vulnerability).

Standard:

Fixed bug #71798 (Integer Overflow in php_raw_url_encode).

Solutions

freebsd-upgrade-package-php55freebsd-upgrade-package-php56freebsd-upgrade-package-php70

References

URL-http://php.net/ChangeLog-5.php#5.5.34
URL-http://php.net/ChangeLog-5.php#5.6.20
URL-http://php.net/ChangeLog-7.php#7.0.5

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today