DSA-4081-1 php5 -- php5ID: oval:org.secpod.oval:def:603231 | Date: (C)2018-02-05 (M)2024-02-19 |
Class: PATCH | Family: unix |
Several vulnerabilities were found in PHP, a widely-used open source general purpose scripting language: CVE-2017-11142 Denial of service via overly long form variables CVE-2017-11143 Invalid free in wddx_deserialize CVE-2017-11144 Denial of service in openssl extension due to incorrect return value check of OpenSSL sealing function. CVE-2017-11145 Out-of-bounds read in wddx_deserialize CVE-2017-11628 Buffer overflow in PHP INI parsing API CVE-2017-12933 Buffer overread in finish_nested_data CVE-2017-16642 Out-of-bounds read in timelib_meridian