[3.1] php: Multiple issues (CVE-2016-7411, CVE-2016-7412, CVE-2016-7413, CVE-2016-7414, CVE-2016-7416, CVE-2016-7417, CVE-2016-7418)
CVE-2016-7411: A memory corruption error may occur during deserialized object destruction
Reference:
https://bugs.php.net/bug.php?id=73052
Patch:
https://github.com/php/php-src/commit/6a7cc8ff85827fa9ac715b3a83c2d9147f33cd43?w=1
CVE-2016-7412: A heap overflow may occur in the processing of BIT fields in mysqlnd
Reference:
https://bugs.php.net/bug.php?id=72293
Patch:
https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1
CVE-2016-7413: A use-after-free memory error may occur in wddx_deserialize()
Reference:
https://bugs.php.net/bug.php?id=72860
Patch:
https://github.com/php/php-src/commit/b88393f08a558eec14964a55d3c680fe67407712?w=1
CVE-2016-7414: An out-of-bounds memory error may occur in phar_parse_zipfile()
Reference:
https://bugs.php.net/bug.php?id=72928
Patch:
https://github.com/php/php-src/commit/0bfb970f43acd1e81d11be1154805f86655f15d5?w=1
CVE-2016-7416: A memory corruption error may occur in processing locale data
Reference:
https://bugs.php.net/bug.php?id=73007
Patch:
https://github.com/php/php-src/commit/6d55ba265637d6adf0ba7e9c9ef11187d1ec2f5b?w=1
CVE-2016-7417: A memory corruption error may occur when unserializing SplArray
Reference:
https://bugs.php.net/bug.php?id=73029
Patch:
https://github.com/php/php-src/commit/ecb7f58a069be0dec4a6131b6351a761f808f22e?w=1
CVE-2016-7418: An out-of-bounds memory read error may occur in php_wddx_push_element()
Reference:
https://bugs.php.net/bug.php?id=73065
Patch:
https://github.com/php/php-src/commit/c4cca4c20e75359c9a13a1f9a36cb7b4e9601d29?w=1
(from redmine: issue id 6193, created on 2016-09-20, closed on 2016-10-18)
- Relations:
- parent #6188 (closed)
- Changesets:
- Revision c72d2f6e on 2016-10-18T12:29:17Z:
main/php: security upgrade to 5.6.27. Fixes #6193
CVE-2016-7411: A memory corruption error may occur during deserialized object destruction
CVE-2016-7412: A heap overflow may occur in the processing of BIT fields in mysqlnd
CVE-2016-7413: A use-after-free memory error may occur in wddx_deserialize()
CVE-2016-7414: An out-of-bounds memory error may occur in phar_parse_zipfile()
CVE-2016-7416: A memory corruption error may occur in processing locale data
CVE-2016-7417: A memory corruption error may occur when unserializing SplArray
CVE-2016-7418: An out-of-bounds memory read error may occur in php_wddx_push_element()
(cherry picked from commit c498273a9b9628de4f8a7115271dddfd87ea7807)