CVE - CVE-2015-2787

CVE-ID
CVE-2015-2787	Learn more at National Vulnerability Database (NVD) • Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Description
Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages use of the unset function within an __wakeup function, a related issue to CVE-2015-0231.
References
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
CONFIRM:http://php.net/ChangeLog-5.php CONFIRM:https://bugs.php.net/bug.php?id=68976 CONFIRM:https://gist.github.com/smalyshev/eea9eafc7c88a4a6d10d CONFIRM:https://support.apple.com/kb/HT205031 CONFIRM:https://support.apple.com/HT205267 CONFIRM:http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html CONFIRM:http://www.oracle.com/technetwork/topics/security/bulletinjul2015-2511963.html APPLE:APPLE-SA-2015-08-13-2 URL:http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html APPLE:APPLE-SA-2015-09-30-3 URL:http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html GENTOO:GLSA-201606-10 URL:https://security.gentoo.org/glsa/201606-10 HP:HPSBMU03380 URL:http://marc.info/?l=bugtraq&m=143748090628601&w=2 HP:HPSBMU03409 URL:http://marc.info/?l=bugtraq&m=144050155601375&w=2 REDHAT:RHSA-2015:1135 URL:http://rhn.redhat.com/errata/RHSA-2015-1135.html REDHAT:RHSA-2015:1053 URL:http://rhn.redhat.com/errata/RHSA-2015-1053.html REDHAT:RHSA-2015:1066 URL:http://rhn.redhat.com/errata/RHSA-2015-1066.html SUSE:openSUSE-SU-2015:0684 URL:http://lists.opensuse.org/opensuse-updates/2015-04/msg00015.html SUSE:SUSE-SU-2015:0868 URL:http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.html UBUNTU:USN-2572-1 URL:http://www.ubuntu.com/usn/USN-2572-1 BID:73431 URL:http://www.securityfocus.com/bid/73431 SECTRACK:1032485 URL:http://www.securitytracker.com/id/1032485
Assigning CNA
N/A
Date Entry Created
20150329	Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Assigned (20150329)
Votes (Legacy)

Comments (Legacy)

Proposed (Legacy)
N/A
This is an entry on the CVE list, which standardizes names for security problems.
Search CVE Using Keywords: You can also search by reference using the CVE Reference Maps.
For More Information: cve@mitre.org