Nguyenvuhoang199321

**Name of the Vulnerable Software and Affected Versions** PHP versions 7.0.0 through 7.0.14 PHP versions 7.1.0 through 7.1.0 **Description** The issue allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash. This occurs when an inapplicable class name is present in a wddxPacket XML document, leading to mishandling in a `wddx deserialize` call. The `php wddx pop element` function in ext/wddx/wddx.c is specifically affected. **Recommendations** For PHP versions 7.0.0 through 7.0.14, update to version 7.0.15 or later. For PHP versions 7.1.0 through 7.1.0, update to version 7.1.1 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.6.26 PHP versions 7.x prior to 7.0.11 **Description** The issue is related to the ZIP signature-verification feature, which does not ensure that the `uncompressed filesize` field is large enough. This allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have other unspecified impacts via a crafted PHAR archive. The problem is associated with the files `ext/phar/util.c` and `ext/phar/zip.c`. **Recommendations** For PHP versions prior to 5.6.26, update to version 5.6.26 or later. For PHP versions 7.x prior to 7.0.11, update to version 7.0.11 or later. As a temporary workaround, consider restricting the use of PHAR archives until a patch is applied.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.6.25 PHP versions 7.x prior to 7.0.10 **Description** The issue is related to the `exif process IFD in TIFF` function in the `ext/exif/exif.c` file, which mishandles the case of a thumbnail offset that exceeds the file size. This allows remote attackers to obtain sensitive information from process memory via a crafted TIFF image. The vulnerability is associated with the disclosure of protected information and can be exploited by a remote attacker to reveal protected information. **Recommendations** For PHP versions prior to 5.6.25, update to version 5.6.25 or later. For PHP versions 7.x prior to 7.0.10, update to version 7.0.10 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 7.0.10 **Description** The issue is related to an integer overflow in libcurl, which is not properly handled in the affected PHP versions. This can lead to a denial of service due to an allocation error and a heap-based buffer overflow when a long string is mishandled in a `curl escape` call. **Recommendations** For PHP versions prior to 7.0.10, update to version 7.0.10 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.5.38 PHP versions 5.6.x prior to 5.6.24 PHP versions 7.x prior to 7.0.9 **Description** The issue is related to the `exif process user comment` function, which allows remote attackers to cause a denial of service, resulting in a NULL pointer dereference and application crash. This can be achieved via a crafted JPEG image. The vulnerability is associated with pointer dereference errors. **Recommendations** For PHP versions prior to 5.5.38, update to version 5.5.38 or later. For PHP versions 5.6.x prior to 5.6.24, update to version 5.6.24 or later. For PHP versions 7.x prior to 7.0.9, update to version 7.0.9 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.5.38 PHP versions 5.6.x prior to 5.6.24 PHP versions 7.x prior to 7.0.9 **Description** The issue allows remote attackers to cause a denial of service, obtain sensitive information from process memory, or possibly have unspecified other impact via a crafted JPEG image. This is due to an out-of-bounds array access and memory corruption in the exif process IFD in MAKERNOTE function. **Recommendations** For PHP versions prior to 5.5.38, update to version 5.5.38 or later. For PHP versions 5.6.x prior to 5.6.24, update to version 5.6.24 or later. For PHP versions 7.x prior to 7.0.9, update to version 7.0.9 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.5.37 PHP versions 5.6.x prior to 5.6.23 PHP versions 7.x prior to 7.0.8 **Description** The issue is related to a double free vulnerability in the `php wddx process data` function in the WDDX extension. This vulnerability can be exploited by remote attackers via crafted XML data that is mishandled in a `wddx deserialize` call, potentially leading to a denial of service (application crash) or possibly the execution of arbitrary code. **Recommendations** For PHP versions prior to 5.5.37, update to version 5.5.37 or later. For PHP versions 5.6.x prior to 5.6.23, update to version 5.6.23 or later. For PHP versions 7.x prior to 7.0.8, update to version 7.0.8 or later.

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.5.37 PHP versions 5.6.x prior to 5.6.23 PHP versions 7.x prior to 7.0.8 **Description** The issue is caused by multiple integer overflows in the mcrypt extension, which can be exploited by remote attackers to cause a denial of service, such as a heap-based buffer overflow and application crash, or possibly have other unspecified impacts. This is related to the `mcrypt generic` and `mdecrypt generic` functions, and can be triggered through a crafted length value. **Recommendations** For PHP versions prior to 5.5.37, update to version 5.5.37 or later. For PHP versions 5.6.x prior to 5.6.23, update to version 5.6.23 or later. For PHP versions 7.x prior to 7.0.8, update to version 7.0.8 or later.