Lucene search
Redhat.comRH:CVE-2019-9021HistoryOct 29, 2019 - 4:03 a.m.
CVE-2019-9021
2019-10-2904:03:55
redhat.com
access.redhat.com
17
0.013 Low
EPSS
Percentile
86.0%
An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A heap-based buffer over-read in PHAR reading functions in the PHAR extension may allow an attacker to read allocated or unallocated memory past the actual data when trying to parse the file name, a different vulnerability than CVE-2018-20783. This is related to phar_detect_phar_fname_ext in ext/phar/phar.c.
Related
alpinelinux
alpinelinux
CVE-2019-9021
2019-02-22 23:29:00
CVE-2018-20783
2019-02-21 19:29:00
prion
prion
Heap overflow
2019-02-22 23:29:00
Design/Logic Flaw
2019-02-21 19:29:00
cvelist
cvelist
CVE-2019-9021
2019-02-22 23:00:00
CVE-2018-20783
2019-02-21 19:00:00
nvd
nvd
CVE-2019-9021
2019-02-22 23:29:00
CVE-2018-20783
2019-02-21 19:29:00
f5
f5
K50602063 : PHP vulnerability CVE-2019-9021
2019-02-28 00:00:00
cve
cve
CVE-2019-9021
2019-02-22 23:29:00
CVE-2018-20783
2019-02-21 19:29:00
debiancve
debiancve
CVE-2019-9021
2019-02-22 23:29:00
CVE-2018-20783
2019-02-21 19:29:00
ubuntucve
ubuntucve
CVE-2019-9021
2019-02-22 00:00:00
CVE-2018-20783
2019-02-21 00:00:00
osv
osv
CVE-2019-9021
2019-02-22 23:29:00
CVE-2018-20783
2019-02-21 19:29:00
php5 - security update
2018-12-16 00:00:00
nessus
nessus
EulerOS Virtualization 2.5.3 : php (EulerOS-SA-2019-1265)
2019-04-04 00:00:00
EulerOS 2.0 SP2 : php (EulerOS-SA-2019-1120)
2019-04-02 00:00:00
EulerOS Virtualization 2.5.3 : php (EulerOS-SA-2019-1274)
2019-04-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1265)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1146)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for php (EulerOS-SA-2019-1120)
2020-01-23 00:00:00
hackerone
hackerone
Internet Bug Bounty: Heap Buffer Overflow (READ: 4) in phar_parse_pharfile
2019-01-09 22:03:25
Internet Bug Bounty: heap buffer overflow in phar_detect_phar_fname_ext
2019-01-07 08:54:00
veracode
veracode
Information Disclosure
2019-08-20 00:10:41
Arbitrary Code Execution
2019-08-20 00:10:42
redhatcve
redhatcve
CVE-2018-20783
2020-01-19 09:40:43
suse
suse
Security update for php5 (moderate)
2019-04-23 00:00:00
Security update for php7 (moderate)
2019-04-29 00:00:00
Security update for php7 (moderate)
2019-06-18 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2019-03-12 00:00:00
PHP vulnerabilities
2019-05-22 00:00:00
PHP vulnerabilities
2019-03-06 00:00:00
debian
debian
[SECURITY] [DSA 4398-1] php7.0 security update
2019-02-28 22:04:23
oraclelinux
oraclelinux
php:7.2 security, bug fix, and enhancement update
2020-05-05 00:00:00
almalinux
almalinux
Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
redhat
redhat
(RHSA-2020:1624) Moderate: php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
(RHSA-2019:3299) Critical: rh-php72-php security update
2019-11-01 12:22:19
rocky
rocky
php:7.2 security, bug fix, and enhancement update
2020-04-28 08:57:54
ibm
ibm
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45