Lucene search
F5F5:K39712275HistoryOct 10, 2016 - 12:00 a.m.
K39712275 : PHP vulnerability CVE-2016-7414
2016-10-1000:00:00
my.f5.com
21
Security Advisory Description
The ZIP signature-verification feature in PHP before 5.6.26 and 7.x before 7.0.11 does not ensure that the uncompressed_filesize field is large enough, which allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have unspecified other impact via a crafted PHAR archive, related to ext/phar/util.c and ext/phar/zip.c. (CVE-2016-7414)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
nvd
nvd
CVE-2016-7414
2016-09-17 21:59:06
cve
cve
CVE-2016-7414
2016-09-17 21:59:06
redhatcve
redhatcve
CVE-2016-7414
2016-09-19 13:18:49
alpinelinux
alpinelinux
CVE-2016-7414
2016-09-17 21:59:06
veracode
veracode
Denial Of Service (DoS) Through Memory Corruption
2019-05-16 02:59:58
Use After Free
2019-05-16 02:59:58
cvelist
cvelist
CVE-2016-7414
2016-09-17 21:00:00
prion
prion
Out-of-bounds
2016-09-17 21:59:00
debiancve
debiancve
CVE-2016-7414
2016-09-17 21:59:00
f5
f5
SOL39712275 - PHP vulnerability CVE-2016-7414
2016-10-10 00:00:00
ubuntucve
ubuntucve
CVE-2016-7414
2016-09-17 00:00:00
amazon
amazon
Medium: php70
2016-10-12 17:00:00
Medium: php56
2016-10-12 17:00:00
openvas
openvas
PHP Multiple Vulnerabilities - 03 (Sep 2016) - Windows
2016-09-12 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-754)
2016-10-26 00:00:00
PHP Multiple Vulnerabilities - 03 (Sep 2016) - Linux
2016-09-12 00:00:00
freebsd
freebsd
PHP -- multiple vulnerabilities
2016-09-15 00:00:00
PHP -- multiple vulnerabilities
2016-09-16 00:00:00
nessus
nessus
PHP 7.0.x < 7.0.11 Multiple Vulnerabilities
2016-09-22 00:00:00
PHP 7.0.x < 7.0.11 Multiple Vulnerabilities
2019-01-09 00:00:00
suse
suse
Security update for php5 (important)
2016-10-04 16:10:25
Security update for php5 (important)
2016-10-14 16:11:34
Security update for php53 (important)
2016-10-06 01:08:31
slackware
slackware
[slackware-security] php
2016-09-23 23:31:48
mageia
mageia
Updated php packages fix security vulnerabilities
2016-09-25 18:45:31
archlinux
archlinux
php: multiple issues
2016-09-18 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: php-5.6.26-1.fc24
2016-09-27 03:58:11
[SECURITY] Fedora 23 Update: php-5.6.26-1.fc23
2016-09-28 04:52:34
osv
osv
php5 - security update
2016-12-16 00:00:00
debian
debian
[SECURITY] [DLA 749-1] php5 security update
2016-12-16 21:48:18
[SECURITY] [DSA 3689-1] php5 security update
2016-10-08 13:53:04
[SECURITY] [DSA 3689-1] php5 security update
2016-10-08 13:53:04
cloudfoundry
cloudfoundry
USN-3095-1 PHP vulnerabilities | Cloud Foundry
2016-10-04 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2016-10-04 00:00:00
redhat
redhat
gentoo
gentoo
PHP: Multiple vulnerabilities
2016-11-30 00:00:00
cloudlinux
cloudlinux
Fix of 227 CVE
2020-10-15 12:00:00
apple
apple
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45