php.net
|
support
|
documentation
|
report a bug
|
advanced search
|
search howto
|
statistics
|
random bug
|
login
go to bug id or search bugs for
Showing 1-30 of 392
Show Next 30 Entries »
ID#
Date
Last Modified
Package
Type
Status
PHP Version
OS
Summary
Assigned
77247
(edit)
2018-12-06 08:11 UTC
2019-02-22 22:07 UTC
PHAR related
Sec Bug
Closed
5.6.39
heap buffer overflow in phar_detect_phar_fname_ext
stas
81727
(edit)
2022-08-12 09:44 UTC
2022-09-29 18:57 UTC
HTTP related
Sec Bug
Closed
Irrelevant
Any
$_COOKIE names string replacement (. -> _): cookie integrity vulnerabilities
derick
81746
(edit)
2023-01-20 22:19 UTC
2023-02-13 04:40 UTC
*Directory/Filesystem functions
Sec Bug
Closed
8.0.27
Linux
1-byte array overrun in common path resolve code
stas
74194
(edit)
2017-03-02 07:55 UTC
2017-08-12 19:01 UTC
*General Issues
Sec Bug
Closed
7.1Git-2017-03-02 (Git)
Test on Ubuntu 16.04 x64
a heap-buffer-overflow when serializing ArrayObject
nikic
54681
(edit)
2011-05-07 00:58 UTC
2011-08-22 11:44 UTC
*General Issues
Sec Bug
Closed
5.3.6
NetBSD
addGlob() crashes on invalid flags
pajoye
68027
(edit)
2014-09-16 09:42 UTC
2014-10-14 17:41 UTC
*General Issues
Sec Bug
Closed
5.6.0
Ubuntu 14.04.1 LTS 64bit
AddressSanitizer reports a global buffer overflow in mkgmtime() function.
71906
(edit)
2016-03-26 23:29 UTC
2016-04-25 17:06 UTC
mbstring related
Sec Bug
Closed
5.5.33
AddressSanitizer: negative-size-param (-1) in mbfl_strcut
stas
79156
(edit)
2020-01-22 19:22 UTC
2020-01-23 07:15 UTC
Strings related
Sec Bug
Closed
7.2Git-2020-01-22 (Git)
*
Another OOB read in php_strip_tags_ex
stas
72535
(edit)
2016-07-03 05:55 UTC
2017-10-27 18:05 UTC
mcrypt related
Sec Bug
Closed
7.0.8
*
arcfour encryption stream filter crashes php
derick
80711
(edit)
2021-02-04 15:31 UTC
2021-02-05 15:39 UTC
Systems problem
Sec Bug
Closed
8.0.2
N/A
Archives doesn't matches sha256sum nor GPG Signatures
pollita
78338
(edit)
2019-07-28 04:17 UTC
2019-07-29 22:01 UTC
PCRE related
Sec Bug
Closed
7.3.8
Ubuntu 18.04.1 LTS
Array cross-border reading/global variable coverage in PCRE
stas
72093
(edit)
2016-04-24 08:05 UTC
2016-05-06 06:43 UTC
BC math related
Sec Bug
Closed
5.5.34
Linux
bcpowmod accepts negative scale and corrupts _one_ definition
stas
69441
(edit)
2015-04-14 05:35 UTC
2015-04-17 20:55 UTC
PHAR related
Sec Bug
Closed
5.6.8RC1
*
Buffer Over flow when parsing tar/zip/phar in phar_set_inode
stas
70385
(edit)
2015-08-28 18:43 UTC
2015-09-01 18:44 UTC
EXIF related
Sec Bug
Closed
5.6.13RC1
Linux
Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes
69324
(edit)
2015-03-29 03:24 UTC
2015-04-14 07:28 UTC
PHAR related
Sec Bug
Closed
5.6.7
*
Buffer Over-read in unserialize when parsing Phar
stas
74435
(edit)
2017-04-13 16:34 UTC
2017-07-05 04:12 UTC
GD related
Sec Bug
Closed
7.1.3
All
Buffer over-read into uninitialized memory
cmb
71527
(edit)
2016-02-04 22:48 UTC
2016-04-25 17:08 UTC
Reproducible crash
Sec Bug
Closed
5.6.18
Linux
Buffer over-write in finfo_open with malformed magic file.
kaplan
69923
(edit)
2015-06-24 16:09 UTC
2015-08-09 08:52 UTC
PHAR related
Sec Bug
Closed
Irrelevant
Linux (CentOS 7)
Buffer overflow and stack smashing error in phar_fix_filepath
kaplan
61807
(edit)
2012-04-22 01:12 UTC
2013-02-23 11:44 UTC
CGI/CLI related
Sec Bug
Closed
5.4.1RC2
any
Buffer Overflow in apache_request_headers
stas
77385
(edit)
2018-12-31 01:27 UTC
2019-02-22 22:09 UTC
mbstring related
Sec Bug
Closed
5.6.39
Linux
buffer overflow in fetch_token
stas
81738
(edit)
2022-10-11 18:24 UTC
2022-10-21 05:55 UTC
hash related
Sec Bug
Closed
8.2.0RC3
all 64-bit
buffer overflow in hash_update() on long parameter
71719
(edit)
2016-03-05 20:48 UTC
2016-10-05 06:29 UTC
HTTP related
Sec Bug
Closed
7.0.4
Linux
Buffer overflow in HTTP url parsing functions
mike
67397
(edit)
2014-06-08 10:39 UTC
2014-06-27 23:16 UTC
Unicode Engine related
Sec Bug
Closed
5.5.13
Linux
Buffer overflow in locale_get_display_name->uloc_getDisplayName (libicu 4.8.1)
stas
77394
(edit)
2019-01-01 21:23 UTC
2019-02-22 22:09 UTC
mbstring related
Sec Bug
Closed
5.6.39
Linux
Buffer overflow in multibyte case folding - unicode
stas
77370
(edit)
2018-12-29 20:45 UTC
2019-02-22 22:08 UTC
mbstring related
Sec Bug
Closed
5.6.39
*
Buffer overflow on mb regex functions - fetch_token
stas
68601
(edit)
2014-12-13 07:52 UTC
2015-03-24 09:31 UTC
GD related
Sec Bug
Closed
5.4.35
irrevelant
buffer read overflow in gd_gif_in.c
remi
78878
(edit)
2019-11-28 15:03 UTC
2019-12-16 19:01 UTC
BC math related
Sec Bug
Closed
7.4.0
Windows
Buffer underflow in bc_shift_addsub
stas
68224
(edit)
2014-10-14 07:46 UTC
2014-10-22 13:29 UTC
Filesystem function related
Sec Bug
Closed
5.6.1
Ubuntu 14.04
buffer-overflow in /ext/fileinfo/libmagic/readcdf.c caught by AddressSanitizer
remi
68960
(edit)
2015-01-30 10:22 UTC
2015-03-20 05:50 UTC
PCRE related
Sec Bug
Closed
5.6.5
Bundled PCRE affected by CVE-2014-8964
remi
45408
(edit)
2008-07-01 18:46 UTC
2010-11-22 15:27 UTC
PCRE related
Sec Bug
Closed
5.2.6
Irrelevant
bundled version of libpcre misses security fix for CVE-2008-2371
nlopess
Showing 1-30 of 392
Show Next 30 Entries »
Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sun Jun 23 01:01:29 2024 UTC