CVE-2019-9637
First published: Mon Feb 18 2019(Updated: )
An issue was discovered in PHP before 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3. Due to the way rename() across filesystems is implemented, it is possible that file being renamed is briefly available with wrong permissions while the rename is ongoing, thus enabling unauthorized users to access the data.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/rh-php71-php | <0:7.1.30-1.el7 | 0:7.1.30-1.el7 |
| redhat/rh-php72-php | <0:7.2.24-1.el7 | 0:7.2.24-1.el7 |
| PHP PHP | <7.1.27 | |
| PHP PHP | >=7.2.0<7.2.16 | |
| PHP PHP | >=7.3.0<7.3.3 | |
| Debian Debian Linux | =8.0 | |
| Debian Debian Linux | =9.0 | |
| Canonical Ubuntu Linux | =12.04 | |
| Canonical Ubuntu Linux | =14.04 | |
| Canonical Ubuntu Linux | =16.04 | |
| Canonical Ubuntu Linux | =18.04 | |
| Canonical Ubuntu Linux | =18.10 | |
| openSUSE Leap | =42.3 | |
| Netapp Storage Automation Store | ||
| PHP PHP | <7.1.27 | 7.1.27 |
| redhat/php | <7.1.27 | 7.1.27 |
| redhat/php | <7.2.16 | 7.2.16 |
| redhat/php | <7.3.3 | 7.3.3 |
| debian/php5 | ||
| debian/php7.0 | ||
| debian/php7.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://www.cve.org/CVERecord?id=CVE-2019-9637 https://nvd.nist.gov/vuln/detail/CVE-2019-9637
- https://bugzilla.redhat.com/show_bug.cgi?id=1688897
- https://access.redhat.com/errata/RHSA-2020:1624
- https://access.redhat.com/errata/RHSA-2019:2519
- https://access.redhat.com/errata/RHSA-2019:3299
- https://access.redhat.com/security/cve/cve-2019-9637
- http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00104.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00012.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00041.html
- http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00044.html
- https://bugs.php.net/bug.php?id=77630
- https://lists.debian.org/debian-lts-announce/2019/03/msg00043.html
- https://security.netapp.com/advisory/ntap-20190502-0007/
- https://support.f5.com/csp/article/K53825211
- https://usn.ubuntu.com/3922-1/
- https://usn.ubuntu.com/3922-2/
- https://usn.ubuntu.com/3922-3/
- https://www.debian.org/security/2019/dsa-4403
- https://www.tenable.com/security/tns-2019-07
- https://launchpad.net/bugs/cve/CVE-2019-9637
- https://www.php.net/ChangeLog-7.php#7.1.27 (Advisory)
- http://git.php.net/?p=php-src.git;a=commit;h=e3133e4db70476fb7adfdedb738483e2255ce0e1
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=1688898
- https://security-tracker.debian.org/tracker/CVE-2019-9637
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9637
- https://nvd.nist.gov/vuln/detail/CVE-2019-9637
- https://ubuntu.com/security/CVE-2019-9637
Parent vulnerabilities
(Appears in the following advisories)
Frequently Asked Questions
What is the vulnerability ID of this bug?
The vulnerability ID of this bug is CVE-2019-9637.
What is the severity level of CVE-2019-9637?
The severity level of CVE-2019-9637 is high.
What is the affected software version range for CVE-2019-9637?
The affected software versions for CVE-2019-9637 are PHP 7.1.27, 7.2.x before 7.2.16, and 7.3.x before 7.3.3.
How does CVE-2019-9637 allow unauthorized access?
CVE-2019-9637 allows unauthorized access by briefly making the renamed file available with wrong permissions.
Where can I find more information about CVE-2019-9637?
You can find more information about CVE-2019-9637 at the following references: - [https://www.php.net/ChangeLog-7.php#7.1.27](https://www.php.net/ChangeLog-7.php#7.1.27) - [https://bugs.php.net/bug.php?id=77630](https://bugs.php.net/bug.php?id=77630) - [http://git.php.net/?p=php-src.git;a=commit;h=e3133e4db70476fb7adfdedb738483e2255ce0e1](http://git.php.net/?p=php-src.git;a=commit;h=e3133e4db70476fb7adfdedb738483e2255ce0e1)
- collector/redhat-cve
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/launchpad-cve
- source/Launchpad
- agent/author
- collector/php-changelog
- source/PHP
- agent/software-canonical-lookup
- agent/severity
- agent/remedy
- agent/weakness
- agent/description
- collector/nvd-cve
- source/NVD
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2019-9637
- agent/references
- collector/security-tracker-debian
- source/Debian
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/tags
- collector/usn-cve
- source/Ubuntu
- package-manager/redhat
- vendor/php
- canonical/php php
- version/php php/7.2.0
- version/php php/7.3.0
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/8.0
- version/debian debian linux/9.0
- vendor/canonical
- canonical/canonical ubuntu linux
- version/canonical ubuntu linux/12.04
- version/canonical ubuntu linux/14.04
- version/canonical ubuntu linux/16.04
- version/canonical ubuntu linux/18.04
- version/canonical ubuntu linux/18.10
- vendor/opensuse
- canonical/opensuse leap
- version/opensuse leap/42.3
- vendor/netapp
- canonical/netapp storage automation store
- package-manager/debian