Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2015-2787

Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages use of the unset function within an __wakeup function, a related issue to CVE-2015-0231.

Related bugs and status

CVE-2015-2787 (Candidate) is related to these bugs:

Bug #1230917: [SRU] php5-fpm logrotate errors after package switched to upstart

Summary				In	Importance	Status
	1230917	[SRU] php5-fpm logrotate errors after package switched to upstart		php5 (Ubuntu)	High	Fix Released
	1230917	[SRU] php5-fpm logrotate errors after package switched to upstart		php5 (Ubuntu Trusty)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

CONFIRM: http://php.net/ChangeL...
CONFIRM: https://bugs.php.net/b...
CONFIRM: https://gist.github.co...
SUSE: openSUSE-SU-2015:0684
CONFIRM: https://support.apple....
APPLE: APPLE-SA-2015-08-13-2
CONFIRM: https://support.apple....
APPLE: APPLE-SA-2015-09-30-3
REDHAT: RHSA-2015:1135
CONFIRM: http://www.oracle.com/...
CONFIRM: http://www.oracle.com/...
BID: 73431
GENTOO: GLSA-201606-10
UBUNTU: USN-2572-1
REDHAT: RHSA-2015:1053
REDHAT: RHSA-2015:1066
SUSE: SUSE-SU-2015:0868
SECTRACK: 1032485
HP: HPSBMU03380
HP: HPSBMU03409
REDHAT: RHSA-2015:1218