Summary: | <dev-lang/php-{5.6.34,7.0.28,7.1.15}: Stack-based buffer under-read in ext/standard/http_fopen_wrapper.c:php_stream_url_wrap_http_ex function when parsing HTTP response (CVE-2018-7584) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | GLSAMaker/CVETool Bot <glsamaker> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | php-bugs |
Priority: | Normal | Flags: | stable-bot:
sanity-check+
|
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://bugs.php.net/bug.php?id=75981 | ||
Whiteboard: | B3 [noglsa cve] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 652420 | ||
Bug Blocks: |
Description
GLSAMaker/CVETool Bot
2018-03-02 16:08:35 UTC
Ebuilds added. Arches, please test and mark stable. Side note: PHP 5.6.x and 7.0.x will be EOL by the end of 2018. Only security fixes from this point forward for both. First security issue beyond that will be cause for removal. ia64 stable amd64 stable commit a84f4e81164388f51b5efd080797bf39d0349b11 Author: Rolf Eike Beer <eike@sf-mail.de> Date: Fri Mar 16 22:10:26 2018 +0100 dev-lang/php: stable 7.1.15 for sparc, bug #649368 x86 stable commit 3a90cba9679a1af769488df6116ed0748a2ea011 Author: Jeroen Roovers <jer@gentoo.org> Date: Fri Mar 30 11:06:25 2018 +0200 dev-lang/php: Stable for HPPA too. Stable on alpha. Stable on alpha. arm stable, all arches done. GLSA Vote: No Cleanup will happen in bug #652420 |