CVE-2016-3078
Published: 29 April 2016
Multiple integer overflows in php_zip.c in the zip extension in PHP before 7.0.6 allow remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted call to (1) getFromIndex or (2) getFromName in the ZipArchive class.
Notes
Author | Note |
---|---|
mdeslaur | 32-bit only php7.0 only |
Priority
CVSS 3 base score: 9.8
Status
Package | Release | Status |
---|---|---|
php5 Launchpad, Ubuntu, Debian |
upstream |
Not vulnerable
|
precise |
Not vulnerable
|
|
trusty |
Not vulnerable
|
|
wily |
Not vulnerable
|
|
xenial |
Does not exist
|
|
php7.0 Launchpad, Ubuntu, Debian |
upstream |
Released
(7.0.6-1)
|
precise |
Does not exist
|
|
trusty |
Does not exist
|
|
wily |
Does not exist
|
|
xenial |
Released
(7.0.4-7ubuntu2.1)
|
|
Patches: upstream: https://git.php.net/?p=php-src.git;a=commit;h=ccc12efa32f855e6057cb9b7e1e45afe08503a00 |