vulnerability
Huawei EulerOS: CVE-2016-5399: php security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | Apr 21, 2017 | Nov 30, 2017 | Aug 13, 2025 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
Apr 21, 2017
Added
Nov 30, 2017
Modified
Aug 13, 2025
Description
A flaw was found in the way certain error conditions were handled by bzread() function in PHP. An attacker could use this flaw to upload a specially crafted bz2 archive which, when parsed via the vulnerable function, could cause the application to crash or execute arbitrary code with the permissions of the user running the PHP application.
Solutions
huawei-euleros-2_0_sp1-upgrade-phphuawei-euleros-2_0_sp1-upgrade-php-clihuawei-euleros-2_0_sp1-upgrade-php-commonhuawei-euleros-2_0_sp1-upgrade-php-gdhuawei-euleros-2_0_sp1-upgrade-php-ldaphuawei-euleros-2_0_sp1-upgrade-php-mysqlhuawei-euleros-2_0_sp1-upgrade-php-odbchuawei-euleros-2_0_sp1-upgrade-php-pdohuawei-euleros-2_0_sp1-upgrade-php-pgsqlhuawei-euleros-2_0_sp1-upgrade-php-processhuawei-euleros-2_0_sp1-upgrade-php-recodehuawei-euleros-2_0_sp1-upgrade-php-soaphuawei-euleros-2_0_sp1-upgrade-php-xmlhuawei-euleros-2_0_sp1-upgrade-php-xmlrpc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.