Bugzilla – Full Text Bug Listing |
Summary: | VUL-0: CVE-2016-1903: php5: Memory Read via gdImageRotateInterpolated Array Index Out of Bounds | ||
---|---|---|---|
Product: | [Novell Products] SUSE Security Incidents | Reporter: | Johannes Segitz <jsegitz> |
Component: | Incidents | Assignee: | Security Team bot <security-team> |
Status: | RESOLVED FIXED | QA Contact: | Security Team bot <security-team> |
Severity: | Normal | ||
Priority: | P3 - Medium | CC: | astieger, smash_bz |
Version: | unspecified | ||
Target Milestone: | --- | ||
Hardware: | Other | ||
OS: | Other | ||
URL: | https://smash.suse.de/issue/160706/ | ||
Whiteboard: | CVSSv2:SUSE:CVE-2016-1903:5.0:(AV:N/AC:L/Au:N/C:P/I:N/A:N) CVSSv2:RedHat:CVE-2016-1903:5.0:(AV:N/AC:L/Au:N/C:P/I:N/A:N) CVSSv2:NVD:CVE-2016-1903:6.4:(AV:N/AC:L/Au:N/C:P/I:N/A:P) | ||
Found By: | Security Response Team | Services Priority: | |
Business Priority: | Blocker: | --- | |
Marketing QA Status: | --- | IT Deployment: | --- |
Description
Johannes Segitz
2016-01-15 09:54:45 UTC
bugbot adjusting priority Hoping I have read php bug correctly, the appropriate fix is contained in: https://github.com/php/php-src/commit/aa8d3a8cc612ba87c0497275f58a2317a90fb1c4 Tested with php5 @ sle12. $ rpm -qa | grep php5 php5-gd-5.5.14-0.x86_64 php5-5.5.14-0.x86_64 $ BEFORE: $ php -r "imagerotate(imagecreate(1,1),45,0x7ffffff9);" Segmentation fault (core dumped) $ AFTER: $ php -r "imagerotate(imagecreate(1,1),45,0x7ffffff9);" PHP Warning: imagerotate(): gd warning: one parameter to a memory allocation multiplication is negative or zero, failing operation gracefully in Command line code on line 1 $ Submitted for sle12 (-> 42.1) and 13.2. This is an autogenerated message for OBS integration: This bug (962057) was mentioned in https://build.opensuse.org/request/show/354582 13.2 / php5 openSUSE-SU-2016:0251-1: An update that fixes three vulnerabilities is now available. Category: security (moderate) Bug References: 949961,949962,962057 CVE References: CVE-2015-7803,CVE-2015-7804,CVE-2016-1903 Sources used: openSUSE 13.2 (src): php5-5.6.1-39.1 SUSE-SU-2016:0284-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 949961,962057 CVE References: CVE-2015-7803,CVE-2016-1903 Sources used: SUSE Linux Enterprise Software Development Kit 12-SP1 (src): php5-5.5.14-42.2 SUSE Linux Enterprise Software Development Kit 12 (src): php5-5.5.14-42.2 SUSE Linux Enterprise Module for Web Scripting 12 (src): php5-5.5.14-42.2 openSUSE-SU-2016:0366-1: An update that fixes two vulnerabilities is now available. Category: security (moderate) Bug References: 949961,962057 CVE References: CVE-2015-7803,CVE-2016-1903 Sources used: openSUSE Leap 42.1 (src): php5-5.5.14-41.1 sle11 seems not affected. closing |