First published: Thu Apr 26 2018(Updated: )
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service (NULL pointer dereference and application crash) because of mishandling of the ldap_get_dn return value.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/rh-php71-php | <0:7.1.30-1.el7 | 0:7.1.30-1.el7 |
PHP PHP | <5.6.36 | |
PHP PHP | >=7.0.0<7.0.30 | |
PHP PHP | >=7.1.0<7.1.17 | |
PHP PHP | >=7.2.0<7.2.5 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =16.04 | |
Canonical Ubuntu Linux | =17.10 | |
Canonical Ubuntu Linux | =18.04 | |
Debian Debian Linux | =7.0 | |
Debian Debian Linux | =8.0 | |
Debian Debian Linux | =9.0 | |
Netapp Storage Automation Store | ||
PHP PHP | <7.0.30 | 7.0.30 |
debian/php5 | ||
debian/php7.0 | ||
debian/php7.1 | ||
redhat/php | <5.6.36 | 5.6.36 |
redhat/php | <7.0.30 | 7.0.30 |
redhat/php | <7.1.17 | 7.1.17 |
redhat/php | <7.2.5 | 7.2.5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.