CLD-378 Details

Other IDs this deficiency may be known by:

CVE ID None
Other ID(s) fixed-in-5.6.36

Basic Information:

Affected Package(s) php, php5
Deficiency Type SECURITY
Date Created 2018-04-26 17:15:28
Date Last Modified 2018-04-26 19:05:57

Version Specific Information:

Cucumber 1.0 i686 fixed in php-5.6.36-i686-1
Cucumber 1.0 x86_64 fixed in php-5.6.36-x86_64-1

Cucumber 1.1 i686 fixed in php5-5.6.36-i686-1
Cucumber 1.1 x86_64 fixed in php5-5.6.36-x86_64-1

Details:

From http://www.php.net/ChangeLog-5.php#5.6.36. All of these were fixes in
php-5.6.36 on Cucumber Linux 1.0 and php5-5.6.36 on Cucumber Linux 1.1:

    Exif:
        Fixed bug #76130 (Heap Buffer Overflow (READ: 1786) in exif_iif_add_value).
    iconv:
        Fixed bug #76249 (stream filter convert.iconv leads to infinite loop on invalid sequence).
    LDAP:
        Fixed bug #76248 (Malicious LDAP-Server Response causes Crash).
    Phar:
        Fixed bug #76129 (fix for CVE-2018-5712 may not be complete).