FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2014-3515

This CVE name corresponds to:

Entered Topic
2014-08-18 PHP multiple vulnerabilities

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2014-3515 at cve.mitre.org

Details

Type Candidate
Name CVE-2014-3515
Phase Assigned(20140514)

Description

The SPL component in PHP before 5.4.30 and 5.5.x before 5.5.14 incorrectly anticipates that certain data structures will have the array data type after unserialization, which allows remote attackers to execute arbitrary code via a crafted string that triggers use of a Hashtable destructor, related to "type confusion" issues in (1) ArrayObject and (2) SPLObjectStorage.

References

Source Reference
CONFIRM http://git.php.net/?p=php-src.git;a=commit;h=88223c5245e9b470e1e6362bfd96829562ffe6ab
CONFIRM http://www.php.net/ChangeLog-5.php
CONFIRM https://bugs.php.net/bug.php?id=67492
CONFIRM http://support.apple.com/kb/HT6443
DEBIAN DSA-2974
REDHAT RHSA-2014:1765
REDHAT RHSA-2014:1766
SUSE openSUSE-SU-2014:1236
SECUNIA 59794
SECUNIA 59831

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.