TEMP-0000000-F1CA5F

NameTEMP-0000000-F1CA5F
DescriptionType Confusion Vulnerability in PHP_to_XMLRPC_worker()
SourceAutomatically generated temporary name. Not for external reference.

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
php5 (PTS)jessie, jessie (lts)5.6.40+dfsg-0+deb8u21fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
php5sourcewheezy5.4.45-0+deb7u4
php5sourcejessie5.6.17+dfsg-0+deb8u1
php5source(unstable)5.6.17+dfsg-1

Notes

Workaround entry for DLA-533-1 until CVE is assigned
https://git.php.net/?p=php-src.git;a=commit;h=f3c1863aa2721343245b63ac7bd68cfdc3dd41f3
https://bugs.php.net/bug.php?id=70728
CVE Request: https://www.openwall.com/lists/oss-security/2016/02/03/3

Search for package or bug name: Reporting problems