Lucene search
F5F5:K34551175HistoryJul 21, 2017 - 12:00 a.m.
K34551175 : PHP vulnerability CVE-2017-9224
2017-07-2100:00:00
my.f5.com
104
Security Advisory Description
An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in match_at() during regular expression searching. A logical error involving order of validation and access in match_at() could result in an out-of-bounds read from a stack buffer. (CVE-2017-9224)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 | |
| big-ip afm | eq | 12.1.0 |
Related
alpinelinux
alpinelinux
CVE-2017-9224
2017-05-24 15:29:00
nessus
nessus
Amazon Linux 2 : ruby (ALAS-2023-2201)
2023-08-14 00:00:00
Amazon Linux 2 : oniguruma (ALAS-2023-2217)
2023-08-23 00:00:00
Amazon Linux AMI : ruby20 (ALAS-2023-1824)
2023-09-11 00:00:00
ubuntucve
ubuntucve
CVE-2017-9224
2017-05-24 00:00:00
amazon
amazon
Medium: oniguruma
2023-08-17 11:58:00
Medium: ruby20
2023-08-30 17:56:00
Medium: ruby
2023-08-03 18:10:00
nvd
nvd
CVE-2017-9224
2017-05-24 15:29:00
debiancve
debiancve
CVE-2017-9224
2017-05-24 15:29:00
veracode
veracode
Out-Of-Bounds Read
2019-05-16 02:59:59
Use After Free
2019-05-16 02:59:58
redhatcve
redhatcve
CVE-2017-9224
2019-11-04 04:16:58
prion
prion
Stack overflow
2017-05-24 15:29:00
cve
cve
CVE-2017-9224
2017-05-24 15:29:00
cvelist
cvelist
CVE-2017-9224
2017-05-24 15:00:00
osv
osv
CVE-2017-9224
2017-05-24 15:29:00
libonig - security update
2017-05-28 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in php53 affect IBM BladeCenter Advanced Management Module (AMM) (CVE-2017-9227, CVE-2017-9226, CVE-2017-9224)
2023-04-14 14:32:25
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1662-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2019-2403)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1585-1)
2021-06-09 00:00:00
freebsd
freebsd
oniguruma -- multiple vulnerabilities
2017-07-06 00:00:00
slackware
slackware
[slackware-security] php
2017-07-08 00:39:45
hackerone
hackerone
debian
debian
[SECURITY] [DLA 958-1] libonig security update
2017-05-28 13:46:37
fedora
fedora
[SECURITY] Fedora 24 Update: oniguruma-5.9.6-4.fc24
2017-06-10 10:23:48
[SECURITY] Fedora 26 Update: php-7.1.7-1.fc26
2017-07-18 22:25:50
[SECURITY] Fedora 24 Update: php-5.6.31-1.fc24
2017-07-19 01:49:32
altlinux
altlinux
Security fix for the ALT Linux 8 package oniguruma version 6.4.0-alt1
2017-07-12 00:00:00
mageia
mageia
Updated php and libgd packages fix security vulnerabilities
2017-08-08 01:16:24
ubuntu
ubuntu
PHP vulnerabilities
2017-12-18 00:00:00
PHP vulnerabilities
2017-08-10 00:00:00
photon
photon
redhat
redhat
rosalinux
rosalinux
Advisory ROSA-SA-2021-1966
2021-07-02 18:06:34
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
cloudlinux
cloudlinux
Fix of 227 CVE
2020-10-15 12:00:00