php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login

go to bug id or search bugs for

  Showing 1-30 of 392 Show Next 30 Entries »
ID# Date Last Modified Package Type Status PHP Version OS Summary Assigned
54193
(edit)		 2011-03-08 13:58 UTC 2011-03-23 14:25 UTC Unknown/Other Function Sec Bug Closed Irrelevant   Integer overflow in shmop_read() felipe
60279
(edit)		 2011-11-12 10:33 UTC 2011-11-12 15:17 UTC OpenSSL related Sec Bug Closed 5.4.0RC1   Null pointer dereference in stream_socket_enable_crypto pajoye
66815
(edit)		 2014-03-03 15:16 UTC 2014-03-06 13:10 UTC GD related Sec Bug Closed 5.5.9   imagecrop(): insufficient fix for NULL defer CVE-2013-7327 remi
67326
(edit)		 2014-05-22 14:06 UTC 2014-06-27 08:04 UTC Filesystem function related Sec Bug Closed 5.4.28   fileinfo: cdf_read_short_sector insufficient boundary check remi
67327
(edit)		 2014-05-22 14:23 UTC 2014-05-27 01:14 UTC Filesystem function related Sec Bug Closed 5.4.28   fileinfo: CDF infinite loop in nelements DoS  
67328
(edit)		 2014-05-22 14:28 UTC 2014-05-27 01:15 UTC Filesystem function related Sec Bug Closed 5.4.28   fileinfo: numerous file_printf calls resulting in performance degradation  
67329
(edit)		 2014-05-22 14:31 UTC 2014-06-27 08:05 UTC Filesystem function related Sec Bug Closed 5.6   fileinfo: NULL pointer deference flaw by processing certain CDF files ab
67498
(edit)		 2014-06-23 07:13 UTC 2016-04-30 20:58 UTC Reproducible crash Sec Bug Closed 5.4.29   phpinfo() Type Confusion Information Leak Vulnerability stas
68960
(edit)		 2015-01-30 10:22 UTC 2015-03-20 05:50 UTC PCRE related Sec Bug Closed 5.6.5   Bundled PCRE affected by CVE-2014-8964 remi
68978
(edit)		 2015-02-03 10:46 UTC 2015-02-06 04:25 UTC HTTP related Sec Bug Closed Irrelevant   XSS in header() with Internet Explorer stas
69085
(edit)		 2015-02-19 23:13 UTC 2015-08-10 08:12 UTC SOAP related Sec Bug Closed Irrelevant   SoapClient's __call() type confusion through unserialize() dmitry
69337
(edit)		 2015-03-31 07:47 UTC 2015-04-14 07:28 UTC Streams related Sec Bug Closed Irrelevant   php_stream_url_wrap_http_ex() type-confusion vulnerability  
69418
(edit)		 2015-04-10 12:46 UTC 2015-05-19 05:34 UTC *Directory/Filesystem functions Sec Bug Closed 5.5.23   CVE-2006-7243 fix regressions in 5.4+ laruence
69425
(edit)		 2015-04-11 01:55 UTC 2017-01-16 13:29 UTC *General Issues Sec Bug Closed 5.4.39   Use After Free in unserialize() nikic
69545
(edit)		 2015-04-28 23:55 UTC 2015-05-19 05:33 UTC FTP related Sec Bug Closed 5.6.8   Integer overflow in ftp_genlist() resulting in heap overflow laruence
69719
(edit)		 2015-05-28 12:00 UTC 2016-02-11 12:48 UTC *General Issues Sec Bug Closed 5.6.9   Incorrect handling of paths with NULs, related to bug 69353 stas
69782
(edit)		 2015-06-09 08:49 UTC 2015-09-09 10:11 UTC XSLT related Sec Bug Closed 5.6.9   NULL pointer dereference stas
69958
(edit)		 2015-06-29 01:47 UTC 2015-08-09 08:51 UTC Reproducible crash Sec Bug Closed master-Git-2015-06-29 (Git)   Segfault in Phar::convertToData on invalid file kaplan
70014
(edit)		 2015-07-08 00:50 UTC 2016-04-26 09:30 UTC OpenSSL related Sec Bug Closed 5.6.10   openssl_random_pseudo_bytes() is not cryptographically secure stas
70068
(edit)		 2015-07-13 22:59 UTC 2015-09-09 09:57 UTC SPL related Sec Bug Closed 5.6.11   Dangling pointer in the unserialization of ArrayObject items stas
70498
(edit)		 2015-09-15 09:06 UTC 2017-09-06 09:52 UTC Documentation problem Sec Bug Closed Irrelevant   SessionHandleInterface docs example allows users to read/write arbitrary files cmb
71270
(edit)		 2016-01-03 23:26 UTC 2016-01-21 11:46 UTC Scripting Engine problem Sec Bug Closed 7.0.1   Heap BufferOver Flow in escapeshell functions ab
71475
(edit)		 2016-01-28 09:42 UTC 2016-02-04 16:33 UTC OpenSSL related Sec Bug Closed 7.0.3RC1   openssl_seal() uninitialized memory usage stas
71488
(edit)		 2016-01-31 19:58 UTC 2016-03-10 21:12 UTC PHAR related Sec Bug Closed 5.5.31   Stack overflow when decompressing tar archives stas
71637
(edit)		 2016-02-20 12:21 UTC 2016-04-28 17:02 UTC *General Issues Sec Bug Closed 7.0.3   Multiple Heap Overflow due to integer overflows | xml/filter_url/addcslashes stas
71798
(edit)		 2016-03-11 11:37 UTC 2016-04-25 07:00 UTC *General Issues Sec Bug Closed 5.5.33   Integer Overflow in php_raw_url_encode stas
71906
(edit)		 2016-03-26 23:29 UTC 2016-04-25 17:06 UTC mbstring related Sec Bug Closed 5.5.33   AddressSanitizer: negative-size-param (-1) in mbfl_strcut stas
71912
(edit)		 2016-03-29 03:41 UTC 2016-04-27 05:55 UTC GD related Sec Bug Closed 5.5.34   libgd: signedness vulnerability stas
71923
(edit)		 2016-03-29 23:45 UTC 2016-04-27 06:34 UTC Zip Related Sec Bug Closed 7.0.5RC1   integer overflow in ZipArchive::getFrom* stas
72275
(edit)		 2016-05-27 16:05 UTC 2016-06-21 06:46 UTC JSON related Sec Bug Closed 5.5.36   Integer Overflow in json_encode()/json_decode()/json_utf8_to_utf16() stas
  Showing 1-30 of 392 Show Next 30 Entries »
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved. 		Last updated: Fri May 03 20:01:31 2024 UTC