Updated php packages fix security vulnerability
Publication date: 22 Dec 2016Modification date: 22 Dec 2016
Type: security
Affected Mageia releases : 5
CVE: CVE-2016-9934 , CVE-2016-9935
Description
NULL Pointer Dereference in WDDX Packet Deserialization with PDORow in PHP before 5.6.28 (CVE-2016-9934). Invalid read when wddx decodes empty boolean element in PHP before 5.6.29 (CVE-2016-9935).
References
SRPMS
5/core
- php-5.6.29-1.mga5