- Home
- CVEs with nessus.description==This update for php5 fixes the following security issues :
- CVE-2016-6294: The locale_accept_from_http function in
ext/intl/locale/locale_methods.c did not properly
restrict calls to the ICU uloc_acceptLanguageFromHTTP
function, which allowed remote attackers to cause a
denial of service (out-of-bounds read) or possibly have
unspecified other impact via a call with a long argument
(bsc#1035111).
- CVE-2017-9227: A stack out-of-bounds read occurs in
mbc_enc_len() during regular expression searching.
(bsc#1040883)
- CVE-2017-9226: A heap out-of-bounds write or read occurs
in next_state_val() during regular expression
compilation. (bsc#1040889)
- CVE-2017-9224: A stack out-of-bounds read occurs in
match_at() during regular expression searching.
(bsc#1040891)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top