vulnerability
Huawei EulerOS: CVE-2016-5399: php security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | 2017-04-21 | 2017-11-30 | 2025-05-05 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
2017-04-21
Added
2017-11-30
Modified
2025-05-05
Description
A flaw was found in the way certain error conditions were handled by bzread() function in PHP. An attacker could use this flaw to upload a specially crafted bz2 archive which, when parsed via the vulnerable function, could cause the application to crash or execute arbitrary code with the permissions of the user running the PHP application.
Solution(s)
huawei-euleros-2_0_sp1-upgrade-phphuawei-euleros-2_0_sp1-upgrade-php-clihuawei-euleros-2_0_sp1-upgrade-php-commonhuawei-euleros-2_0_sp1-upgrade-php-gdhuawei-euleros-2_0_sp1-upgrade-php-ldaphuawei-euleros-2_0_sp1-upgrade-php-mysqlhuawei-euleros-2_0_sp1-upgrade-php-odbchuawei-euleros-2_0_sp1-upgrade-php-pdohuawei-euleros-2_0_sp1-upgrade-php-pgsqlhuawei-euleros-2_0_sp1-upgrade-php-processhuawei-euleros-2_0_sp1-upgrade-php-recodehuawei-euleros-2_0_sp1-upgrade-php-soaphuawei-euleros-2_0_sp1-upgrade-php-xmlhuawei-euleros-2_0_sp1-upgrade-php-xmlrpc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.