The phar_convert_to_other function in ext/phar/phar_object.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 does not validate a file pointer before a close operation, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted TAR archive that is mishandled in a Phar::convertToData call.
CPE | Name | Operator | Version |
---|---|---|---|
php | eq | 5.6.1 | |
php | eq | 5.6.0 alpha5 | |
php | eq | 5.6.5 | |
php | eq | 5.6.0 beta2 | |
php | eq | 5.6.0 beta1 | |
php | eq | 5.6.4 | |
php | eq | 5.6.6 | |
php | eq | 5.6.0 alpha3 | |
php | eq | 5.6.2 | |
php | eq | 5.6.10 |