CLD-378 Details
Other IDs this deficiency may be known by:
| CVE ID |
None |
| Other ID(s) |
fixed-in-5.6.36 |
Basic Information:
| Affected Package(s) |
php, php5 |
| Deficiency Type |
SECURITY |
| Date Created |
2018-04-26 17:15:28 |
| Date Last Modified |
2018-04-26 19:05:57 |
Version Specific Information:
| Cucumber 1.0 i686 | fixed in php-5.6.36-i686-1 |
| Cucumber 1.0 x86_64 | fixed in php-5.6.36-x86_64-1 |
| Cucumber 1.1 i686 |
fixed in php5-5.6.36-i686-1 |
| Cucumber 1.1 x86_64 |
fixed in php5-5.6.36-x86_64-1 |
Details:
From http://www.php.net/ChangeLog-5.php#5.6.36. All of these were fixes in
php-5.6.36 on Cucumber Linux 1.0 and php5-5.6.36 on Cucumber Linux 1.1:
Exif:
Fixed bug #76130 (Heap Buffer Overflow (READ: 1786) in exif_iif_add_value).
iconv:
Fixed bug #76249 (stream filter convert.iconv leads to infinite loop on invalid sequence).
LDAP:
Fixed bug #76248 (Malicious LDAP-Server Response causes Crash).
Phar:
Fixed bug #76129 (fix for CVE-2018-5712 may not be complete).