CVE-2015-6838

Related Files

Red Hat Security Advisory 2016-0457-01

Posted Mar 15, 2016

Authored by Red Hat | Site access.redhat.com

Red Hat Security Advisory 2016-0457-01 - PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize() function could cause a PHP application to crash or, possibly, execute arbitrary code. Multiple flaws were found in the way the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash or, possibly, execute arbitrary code when opened.

tags | advisory, web, arbitrary, php

systems | linux, redhat

advisories | CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804

SHA-256 | fabe6c8495064f5b62e36b8ab91356d386aff7c7f20e82513294b65ff3b82aa8

Download | Favorite | View

Apple Security Advisory 2015-10-21-4

Posted Oct 21, 2015

Authored by Apple | Site apple.com

Apple Security Advisory 2015-10-21-4 - OS X El Capitan 10.11.1 and Security Update 2015-007 are now available and address memory corruption, code execution, and various other vulnerabilities.

tags | advisory, vulnerability, code execution

systems | apple, osx

advisories | CVE-2012-6151, CVE-2014-3565, CVE-2015-0235, CVE-2015-0273, CVE-2015-5924, CVE-2015-5925, CVE-2015-5926, CVE-2015-5927, CVE-2015-5932, CVE-2015-5933, CVE-2015-5934, CVE-2015-5935, CVE-2015-5936, CVE-2015-5937, CVE-2015-5938, CVE-2015-5939, CVE-2015-5940, CVE-2015-5942, CVE-2015-5943, CVE-2015-5944, CVE-2015-5945, CVE-2015-6563, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-6974

SHA-256 | 29b89a7f94c21f47037df252cf87e2917cad436a38b6f9faf840a0c7ee609335

Download | Favorite | View

Slackware Security Advisory - php Updates

Posted Oct 5, 2015

Authored by Slackware Security Team | Site slackware.com

Slackware Security Advisory - New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues.

tags | advisory, php

systems | linux, slackware

advisories | CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838

SHA-256 | 203b2ebd7735d8416a3e0ad05d22aab39cd5bbfe50aa7d383272f070b4001d45

Download | Favorite | View

Ubuntu Security Notice USN-2758-1

Posted Oct 1, 2015

Authored by Ubuntu | Site security.ubuntu.com

Ubuntu Security Notice 2758-1 - It was discovered that the PHP phar extension incorrectly handled certain files. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. It was discovered that the PHP phar extension incorrectly handled certain filepaths. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. Various other issues were also addressed.

tags | advisory, remote, denial of service, arbitrary, php

systems | linux, ubuntu

advisories | CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838

SHA-256 | 1fd293d881cea98cd6659c2b1a769ba634f267d1f989e5256cc760a12d6e2823

Download | Favorite | View

Debian Security Advisory 3358-1

Posted Sep 15, 2015

Authored by Debian | Site debian.org

Debian Linux Security Advisory 3358-1 - Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development.

tags | advisory, web, php, vulnerability

systems | linux, debian

advisories | CVE-2015-6834, CVE-2015-6835, CVE-2015-6836, CVE-2015-6837, CVE-2015-6838

SHA-256 | 096b1086b1a1d3d75329d6e4c2d3f8595e3acba94ffdbe5e8cbeee41cfdc303c

Download | Favorite | View