PRIOn knowledge basePRION:CVE-2016-3185Type confusion
The make_http_soap_request function in ext/soap/php_http.c in PHP before 5.4.44, 5.5.x before 5.5.28, 5.6.x before 5.6.12, and 7.x before 7.0.4 allows remote attackers to obtain sensitive information from process memory or cause a denial of service (type confusion and application crash) via crafted serialized _cookies data, related to the SoapClient::__call method in ext/soap/soap.c.
| CPE | Name | Operator | Version |
|---|---|---|---|
| php | eq | 5.6.1 | |
| php | eq | 5.6.0 alpha5 | |
| php | eq | 5.6.5 | |
| php | eq | 5.6.0 beta2 | |
| php | eq | 5.6.0 beta1 | |
| php | eq | 5.6.4 | |
| php | eq | 5.6.6 | |
| php | eq | 5.6.0 alpha3 | |
| php | eq | 5.6.11 | |
| php | eq | 5.6.2 |
References
lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00056.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00057.html
lists.opensuse.org/opensuse-security-announce/2016-04/msg00058.html
php.net/ChangeLog-5.php
php.net/ChangeLog-7.php
www.securityfocus.com/bid/84307
www.ubuntu.com/usn/USN-2952-1
www.ubuntu.com/usn/USN-2952-2
bugs.php.net/bug.php?id=70081
bugs.php.net/bug.php?id=71610
git.php.net/?p=php-src.git%3Ba=commit%3Bh=eaf4e77190d402ea014207e9a7d5da1a4f3727ba
Related
