First published: Fri Feb 20 2015(Updated: )
Use after free vulnerability reported in PHP "phar" extension [1]. Upstream commit that fixes this: <a href="http://git.php.net/?p=php-src.git;a=commit;h=b2cf3f064b8f5efef89bb084521b61318c71781b">http://git.php.net/?p=php-src.git;a=commit;h=b2cf3f064b8f5efef89bb084521b61318c71781b</a> [1]: <a href="https://bugs.php.net/bug.php?id=68901">https://bugs.php.net/bug.php?id=68901</a>
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/php | <5.5.22 | 5.5.22 |
redhat/php | <5.6.6 | 5.6.6 |
Canonical Ubuntu Linux | =10.04 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =14.10 | |
Debian Debian Linux | =7.0 | |
openSUSE openSUSE | =13.1 | |
openSUSE openSUSE | =13.2 | |
PHP PHP | >=5.4.0<5.4.40 | |
PHP PHP | >=5.5.0<5.5.22 | |
PHP PHP | >=5.6.0<5.6.6 | |
Apple Mac OS X | <=10.10.4 | |
Redhat Enterprise Linux Desktop | =7.0 | |
Redhat Enterprise Linux Hpc Node | =7.0 | |
Redhat Enterprise Linux Hpc Node Eus | =7.1 | |
Redhat Enterprise Linux Server | =7.0 | |
Redhat Enterprise Linux Server Eus | =7.1 | |
Redhat Enterprise Linux Workstation | =7.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.