php/archived-web-php
1
0
Fork 0
mirror of https://github.com/php/web-php.git synced 2026-03-23 23:02:13 +01:00
Code Issues Packages Projects Releases Wiki Activity

Add CVE ID to bugs #73825 (PHP 5.6.30, 7.0.15 and 7.1.1) and #73831 (PHP 7.0.15 and 7.1.1)

Browse Source
This commit is contained in:
Lior Kaplan
2017-01-25 01:43:33 +02:00
parent 610a8865c0
commit 8a3145fee2
2 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
ChangeLog-5.php
View File

@@ -38,7 +38,7 @@ site_header("PHP 5 ChangeLog", array("current" => "docs", "css" => array("change
<li>Standard:
<ul>
<li><?php bugfix(70213); ?> (Unserialize context shared on double class lookup).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()). (CVE-2016-10161)</li>
</ul></li>
</ul>
<!-- }}} --></section>

8
ChangeLog-7.php
View File

@@ -16,8 +16,8 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change
<li><?php bugfix(73663); ?> ("Invalid opcode 65/16/8" occurs with a variable created with list()).</li>
<li><?php bugfix(73585); ?> (Logging of "Internal Zend error - Missing class information" missing class name).</li>
<li><?php bugfix(73753); ?> (unserialized array pointer not advancing).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()).</li>
<li><?php bugfix(73831); ?> (NULL Pointer Dereference while unserialize php object).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()). (CVE-2016-10161)</li>
<li><?php bugfix(73831); ?> (NULL Pointer Dereference while unserialize php object). (CVE-2016-10162)</li>
<li><?php bugfix(73832); ?> (Use of uninitialized memory in unserialize()).</li>
<li><?php bugfix(73092); ?> (Unserialize use-after-free when resizing object's properties hash table).</li>
<li><?php bugfix(69425); ?> (Use After Free in unserialize()).</li>
@@ -114,8 +114,8 @@ site_header("PHP 7 ChangeLog", array("current" => "docs", "css" => array("change
<li><?php bugfix(73727); ?> (ZEND_MM_BITSET_LEN is "undefined symbol" in zend_bitset.h).</li>
<li><?php bugfix(73753); ?> (unserialized array pointer not advancing).</li>
<li><?php bugfix(73783); ?> (SIG_IGN doesn't work when Zend Signals is enabled).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()).</li>
<li><?php bugfix(73831); ?> (NULL Pointer Dereference while unserialize php object).</li>
<li><?php bugfix(73825); ?> (Heap out of bounds read on unserialize in finish_nested_data()). (CVE-2016-10161)</li>
<li><?php bugfix(73831); ?> (NULL Pointer Dereference while unserialize php object). (CVE-2016-10162)</li>
<li><?php bugfix(73832); ?> (Use of uninitialized memory in unserialize()).</li>
</ul>
</li>