CVE-2016-5094

Synopsis Moderate: rh-php56 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for rh-php56, rh-php56-php, and rh-php56-php-pear is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Mo ...

Several security issues were fixed in PHP ...

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development The vulnerabilities are addressed by upgrading PHP to the new upstream version 5622, which includes additional bug fixes Please refer to the upstream changelog for more information: phpnet/ChangeLog-5php#562 ...

The following security-related issues were resolved: Out-of-bounds read in imagescale (CVE-2013-7456)Integer underflow causing arbitrary null write in fread/gzread (CVE-2016-5096)Integer overflow in php_html_entities() (CVE-2016-5094)Integer overflow in php_filter_full_special_chars() (CVE-2016-5095)Out-of-bounds heap read in get_icu_value_internal ...

The following security-related issues were resolved: Out-of-bounds read in imagescale (CVE-2013-7456)Integer underflow causing arbitrary null write in fread/gzread (CVE-2016-5096)The phar_make_dirstream function in ext/phar/dirstreamc in PHP before 5618 and 7x before 703 mishandles zero-size //@LongLink files, which allows remote attackers ...

Integer overflow in the php_html_entities function in ext/standard/htmlc in PHP before 5536 and 56x before 5622 allows remote attackers to cause a denial of service or possibly have unspecified other impact by triggering a large output string from the htmlspecialchars function ...