Updated php packages fix security vulnerabilities
Publication date: 04 May 2018Modification date: 04 May 2018
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2018-10546 , CVE-2018-10547 , CVE-2018-10548 , CVE-2018-10549
Description
- Heap Buffer Overflow (READ: 1786) in exif_iif_add_value (CVE-2018-10549) - Stream filter convert.iconv leads to infinite loop on invalid sequence (CVE-2018-10546) - Malicious LDAP-Server Response causes Crash. (CVE-2018-10548) - incomplete PHAR Fix (CVE-2018-10547)
References
SRPMS
6/core
- php-5.6.36-1.mga6
5/core
- php-5.6.36-1.mga5