Branch p8 update bulletin.

Package php7 updated to version 7.1.6-alt1.M80P.1 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Уязвимость функции i_zval_ptr_dtor интерпретатора PHP, позволяющая нарушителю вызвать отказ в обслуживании или оказать другое воздействие

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Уязвимость функции mysqli_real_escape_string интерпретатора языка программирования PHP, позволяющая нарушителю вызвать отказ в обслуживании или, возможно, оказать другое воздействие

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

The i_zval_ptr_dtor function in Zend/zend_variables.h in PHP 7.1.5 allows attackers to cause a denial of service (memory consumption and application crash) or possibly have unspecified other impact by triggering crafted operations on array data structures.

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

PHP 7.x through 7.1.5 allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a long string because of an Integer overflow in mysqli_real_escape_string.

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package php7-curl updated to version 7.1.6-alt1.M80P.1 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package php7-openssl updated to version 7.1.6-alt1.M80P.1.1 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package php7-pgsql updated to version 7.1.6-alt1.M80P.1.2 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package php7-zip updated to version 7.1.6-alt1.M80P.1 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Package php7-xsl updated to version 7.1.6-alt1.M80P.1 for branch p8 in task 184064.

Published: 2017-05-21

BDU:2017-01813

Severity: HIGH (7.5)

References:

Published: 2018-08-02

BDU:2022-02425

Severity: CRITICAL (9.8) Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

CVE-2017-9120

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9118

PHP 7.1.5 has an Out of bounds access in php_pcre_replace_impl via a crafted preg_replace call.

Severity: HIGH (7.5) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References:

Published: 2017-05-21
Modified: 2024-11-21

CVE-2017-9119

Severity: CRITICAL (9.8) Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Published: 2018-08-02
Modified: 2024-11-21

CVE-2017-9120

Severity: CRITICAL (9.8) Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References:

Version: 2.1.0

ALT-BU-2017-3169-1

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities

Closed vulnerabilities