php.net
|
support
|
documentation
|
report a bug
|
advanced search
|
search howto
|
statistics
|
random bug
|
login
go to bug id or search bugs for
Showing 1-30 of 392
Show Next 30 Entries »
ID#
Date
Last Modified
Package
Type
Status
PHP Version
OS
Summary
Assigned
54682
(edit)
2011-05-07 01:13 UTC
2012-02-07 20:49 UTC
Tidy
Sec Bug
Closed
5
*
tidy NullPD
tony2001
49687
(edit)
2009-09-27 11:20 UTC
2010-12-01 16:53 UTC
*Unicode Issues
Sec Bug
Closed
5.2.11
*
utf8_decode xml_utf8_decode vuln
cataphract
42862
(edit)
2007-10-05 07:29 UTC
2010-11-22 16:53 UTC
IMAP related
Sec Bug
Closed
5.2.6
*
[PATCH] IMAP toolkit crash: rfc822.c legacy routine buffer overflow
pajoye
45408
(edit)
2008-07-01 18:46 UTC
2010-11-22 15:27 UTC
PCRE related
Sec Bug
Closed
5.2.6
Irrelevant
bundled version of libpcre misses security fix for CVE-2008-2371
nlopess
55871
(edit)
2011-10-08 09:38 UTC
2015-04-26 12:52 UTC
Strings related
Sec Bug
Closed
5.3
*
Interruption in substr_replace()
stas
53273
(edit)
2010-11-09 04:11 UTC
2010-11-22 15:27 UTC
mbstring related
Sec Bug
Closed
5.3 and above.
Irrelevant
mb_strcut() returns garbage with the excessive length parameter
moriyoshi
61065
(edit)
2012-02-12 21:43 UTC
2014-06-19 16:31 UTC
PHAR related
Sec Bug
Closed
5.3.10
All
Secunia SA44335 - arbitrary code execution
stas
64879
(edit)
2013-05-20 08:53 UTC
2013-06-08 09:17 UTC
Strings related
Sec Bug
Closed
5.3.25
*
Heap based buffer overflow in quoted_printable_encode
stas
65236
(edit)
2013-07-10 17:29 UTC
2013-07-12 14:27 UTC
*XML functions
Sec Bug
Closed
5.3.26
*
heap corruption in xml parser
johannes
54304
(edit)
2011-03-18 11:21 UTC
2011-09-12 13:22 UTC
Reproducible crash
Sec Bug
Closed
5.3.6
Linux x86-64
Invalid read in RegexIterator::accept() causes crash
pajoye
54332
(edit)
2011-03-21 09:27 UTC
2011-07-11 05:48 UTC
Reproducible crash
Sec Bug
Closed
5.3.6
Linux x86-64
Crash in zend_mm_check_ptr // Heap corruption
dmitry
54681
(edit)
2011-05-07 00:58 UTC
2011-08-22 11:44 UTC
*General Issues
Sec Bug
Closed
5.3.6
NetBSD
addGlob() crashes on invalid flags
pajoye
70345
(edit)
2015-08-24 17:31 UTC
2015-09-01 18:44 UTC
PCRE related
Sec Bug
Closed
5.4
Windows/Linux
Multiple vulnerabilities related to PCRE functions
68735
(edit)
2015-01-03 17:48 UTC
2015-03-19 16:20 UTC
*Directory/Filesystem functions
Sec Bug
Closed
5.4.*
any
fileinfo out-of-bounds memory access
ab
55856
(edit)
2011-10-06 05:03 UTC
2014-02-20 22:23 UTC
PCRE related
Sec Bug
Closed
5.4.0beta1
All
preg_replace should fail on trailing garbage
yohgaki
60150
(edit)
2011-10-27 16:37 UTC
2011-11-28 22:39 UTC
EXIF related
Sec Bug
Closed
5.4.0beta2
All 32 bits
Integer overflow during the parsing of invalid exif header
stas
60240
(edit)
2011-11-08 07:49 UTC
2011-12-02 11:50 UTC
SPL related
Sec Bug
Closed
5.4.0beta2
Linux 64bit
invalid read/writes when unserializing specially crafted strings
mike
60262
(edit)
2011-11-11 11:46 UTC
2018-12-18 01:27 UTC
*General Issues
Sec Bug
Closed
5.4.0RC1
multiple flaws memory_limit bypass, dos, code exec
stas
60279
(edit)
2011-11-12 10:33 UTC
2011-11-12 15:17 UTC
OpenSSL related
Sec Bug
Closed
5.4.0RC1
Null pointer dereference in stream_socket_enable_crypto
pajoye
61910
(edit)
2012-05-02 17:56 UTC
2012-05-09 21:37 UTC
CGI/CLI related
Sec Bug
Closed
5.4.1
Unix
VU#520827 - PHP-CGI query string parameter vulnerability
johannes
64449
(edit)
2013-03-18 22:25 UTC
2020-06-24 12:07 UTC
*Encryption and hash functions
Sec Bug
Closed
5.4.13
Linux
crypt doesn't fail on "$" in CRYPT_DES salt
nikic
61807
(edit)
2012-04-22 01:12 UTC
2013-02-23 11:44 UTC
CGI/CLI related
Sec Bug
Closed
5.4.1RC2
any
Buffer Overflow in apache_request_headers
stas
66321
(edit)
2013-12-19 07:00 UTC
2016-05-14 15:15 UTC
Zip Related
Sec Bug
Closed
5.4.23
Linux
PHP ZipArchive::open() ze_obj->filename_len not real
remi
66820
(edit)
2014-03-04 13:11 UTC
2014-03-06 13:11 UTC
Filesystem function related
Sec Bug
Closed
5.4.25
irrevelant
out-of-bounds memory access in fileinfo
remi
66901
(edit)
2014-03-13 19:31 UTC
2014-08-04 08:43 UTC
GD related
Sec Bug
Closed
5.4.26
Fedora r17 (Beefy Miracle)
php-gd 'c_color' NULL pointer dereference
remi
66946
(edit)
2014-03-24 07:55 UTC
2014-04-03 09:26 UTC
Filesystem function related
Sec Bug
Closed
5.4.26
irrevelant
fileinfo: extensive backtracking in awk rule regular expression
remi
67249
(edit)
2014-05-12 01:35 UTC
2014-05-27 19:21 UTC
*General Issues
Sec Bug
Closed
5.4.28
*
printf out-of-bounds read
stas
67326
(edit)
2014-05-22 14:06 UTC
2014-06-27 08:04 UTC
Filesystem function related
Sec Bug
Closed
5.4.28
fileinfo: cdf_read_short_sector insufficient boundary check
remi
67327
(edit)
2014-05-22 14:23 UTC
2014-05-27 01:14 UTC
Filesystem function related
Sec Bug
Closed
5.4.28
fileinfo: CDF infinite loop in nelements DoS
67328
(edit)
2014-05-22 14:28 UTC
2014-05-27 01:15 UTC
Filesystem function related
Sec Bug
Closed
5.4.28
fileinfo: numerous file_printf calls resulting in performance degradation
Showing 1-30 of 392
Show Next 30 Entries »
Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sun Jun 23 01:01:29 2024 UTC