SB2018020113 - Multiple vulnerabilities in PHP

Description

This security bulletin contains information about 5 secuirty vulnerabilities.

1) Memory corruption (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to imap_append HeapCorruction. A remote attacker can trigger memory corruption and cause the service to crash.

2) Memory corruption (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to use of all interned strings free memory. A remote attacker can trigger memory corruption and cause the service to crash.

3) Denial of service (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to an error when calling on a connection to cockroach. A remote attacker can trigger memory corruption and cause pg_version() to crash.

4) Memory leak (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to potential memory leak in internal classes' static members. A remote attacker can trigger NULL pointer dereference and cause the service to crash.

5) Denial of service (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to an error when handling malicious calls. A remote attacker can cause the fast CGI process to crash when PHP calls getenv() with a second parameter (local_only) of false.

Remediation

Install update from vendor's website.

References

• https://bugs.php.net/bug.php?id=75774
• https://bugs.php.net/bug.php?id=75579
• https://bugs.php.net/bug.php?id=75671
• https://bugs.php.net/bug.php?id=75742
• https://bugs.php.net/bug.php?id=75794