Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-0273

Multiple use-after-free vulnerabilities in ext/date/php_date.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allow remote attackers to execute arbitrary code via crafted serialized input containing a (1) R or (2) r type specifier in (a) DateTimeZone data handled by the php_date_timezone_initialize_from_hash function or (b) DateTime data handled by the php_date_initialize_from_hash function.

Related bugs and status

CVE-2015-0273 (Candidate) is related to these bugs:

Bug #1423551: UPDATE REQUEST: php55u 5.5.22 is available upstream

Summary				In	Importance	Status
	1423551	UPDATE REQUEST: php55u 5.5.22 is available upstream		IUS Community Project	Undecided	Fix Released

Bug #1423744: UPDATE REQUEST: php56u 5.6.6 is available upstream

Summary				In	Importance	Status
	1423744	UPDATE REQUEST: php56u 5.6.6 is available upstream		IUS Community Project	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://git.php.net/?p=...
CONFIRM: http://php.net/ChangeL...
CONFIRM: https://bugs.php.net/b...
CONFIRM: https://bugzilla.redha...
DEBIAN: DSA-3195
SUSE: SUSE-SU-2015:0424
SUSE: SUSE-SU-2015:0436
SUSE: openSUSE-SU-2015:0440
UBUNTU: USN-2535-1
MANDRIVA: MDVSA-2015:079
SECTRACK: 1031945
CONFIRM: http://support.apple.c...
APPLE: APPLE-SA-2015-06-30-2
CONFIRM: https://support.apple....
APPLE: APPLE-SA-2015-09-30-3
CONFIRM: https://support.apple....
APPLE: APPLE-SA-2015-10-21-4
REDHAT: RHSA-2015:1135
CONFIRM: http://www.oracle.com/...
CONFIRM: http://www.oracle.com/...
BID: 72701
GENTOO: GLSA-201606-10
REDHAT: RHSA-2015:1053
REDHAT: RHSA-2015:1066
HP: HPSBMU03380
HP: HPSBMU03409
HP: HPSBUX03337
HP: SSRT102066
REDHAT: RHSA-2015:1218