SB2017102708 - Multiple vulnerabilities in PHP

Description

This security bulletin contains information about 5 secuirty vulnerabilities.

1) Out-of-bounds read (CVE-ID: CVE-2017-11145)

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The weakness exists due to out-of-bounds read in timelib_meridian(). A remote attacker can read arbitrary data on the target system.

2) Null pointer dereference (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to null pointer dereference in zend_mm_alloc_small(). A remote attacker can cause the application to crash.

3) Infinite loop (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to infinite loop when printing an error-message. A remote attacker can cause the application to crash.

4) Out-of-bounds read (CVE-ID: CVE-2017-16642)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to out-of-bounds read in timelib_meridian(). A remote attacker can cause the application to crash.

5) Denial of service (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to data corruption when reading fields of bit type. A remote attacker can cause the application to crash.

Remediation

Install update from vendor's website.

References

• http://php.net/ChangeLog-5.php#5.6.32
• http://php.net/ChangeLog-7.php#7.0.25
• http://php.net/ChangeLog-7.php#7.1.11
• https://bugs.php.net/bug.php?id=75055