SB2018082010 - Multiple vulnerabilities in PHP

Description

This security bulletin contains information about 4 secuirty vulnerabilities.

1) Memory leak (CVE-ID: N/A)

The vulnerability allows a remote attacker to obtain potentially sensitive information on the target system.

The weakness exists due to memory leak when fetching a BLOB field. A remote attacker can submit a malicious BLOB field and gain access to arbitrary data.

2) Memory leak (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to memory leak when using PDO::CURSOR_SCROLL option. A remote attacker can trigger memory corruption and cause httpd.exe to crash on 32 bit systems.

3) Segmentation fault (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to segmentation fault when using `output_add_rewrite_var. A remote attacker can cause the service to crash.

4) Memory leak (CVE-ID: N/A)

The vulnerability allows a remote attacker to cause DoS condition on the target system.

The weakness exists due to ZipArchive memory leak. A remote attacker can trigger flag overwrite and empty archive and cause the service to crash.

Remediation

Install update from vendor's website.

References

• https://bugs.php.net/bug.php?id=76488
• https://bugs.php.net/bug.php?id=75402
• https://bugs.php.net/bug.php?id=76643
• https://bugs.php.net/bug.php?id=76524