vulnerability
Huawei EulerOS: CVE-2016-7412: php security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:N/AC:M/Au:N/C:P/I:P/A:P) | 09/17/2016 | 02/24/2020 | 11/27/2024 |
Severity
7
CVSS
(AV:N/AC:M/Au:N/C:P/I:P/A:P)
Published
09/17/2016
Added
02/24/2020
Modified
11/27/2024
Description
ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag, which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.
Solution(s)
huawei-euleros-2_0_sp5-upgrade-phphuawei-euleros-2_0_sp5-upgrade-php-clihuawei-euleros-2_0_sp5-upgrade-php-commonhuawei-euleros-2_0_sp5-upgrade-php-gdhuawei-euleros-2_0_sp5-upgrade-php-ldaphuawei-euleros-2_0_sp5-upgrade-php-mysqlhuawei-euleros-2_0_sp5-upgrade-php-odbchuawei-euleros-2_0_sp5-upgrade-php-pdohuawei-euleros-2_0_sp5-upgrade-php-pgsqlhuawei-euleros-2_0_sp5-upgrade-php-processhuawei-euleros-2_0_sp5-upgrade-php-recodehuawei-euleros-2_0_sp5-upgrade-php-soaphuawei-euleros-2_0_sp5-upgrade-php-xmlhuawei-euleros-2_0_sp5-upgrade-php-xmlrpc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.