vulnerability
Huawei EulerOS: CVE-2017-11144: php security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:N/AC:L/Au:N/C:N/I:N/A:P) | Jul 10, 2017 | Nov 19, 2019 | Nov 27, 2024 |
Severity
5
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:P)
Published
Jul 10, 2017
Added
Nov 19, 2019
Modified
Nov 27, 2024
Description
In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, the openssl extension PEM sealing code did not check the return value of the OpenSSL sealing function, which could lead to a crash of the PHP interpreter, related to an interpretation conflict for a negative number in ext/openssl/openssl.c, and an OpenSSL documentation omission.
Solution(s)
huawei-euleros-2_0_sp5-upgrade-phphuawei-euleros-2_0_sp5-upgrade-php-clihuawei-euleros-2_0_sp5-upgrade-php-commonhuawei-euleros-2_0_sp5-upgrade-php-gdhuawei-euleros-2_0_sp5-upgrade-php-ldaphuawei-euleros-2_0_sp5-upgrade-php-mysqlhuawei-euleros-2_0_sp5-upgrade-php-odbchuawei-euleros-2_0_sp5-upgrade-php-pdohuawei-euleros-2_0_sp5-upgrade-php-pgsqlhuawei-euleros-2_0_sp5-upgrade-php-processhuawei-euleros-2_0_sp5-upgrade-php-recodehuawei-euleros-2_0_sp5-upgrade-php-soaphuawei-euleros-2_0_sp5-upgrade-php-xmlhuawei-euleros-2_0_sp5-upgrade-php-xmlrpc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.