Wind River Support Network

HomeDefectsLIN7-7330

Fixed

LIN7-7330 : Security Advisory - php - CVE-2016-9138

Created: Jan 12, 2017 Updated: Sep 8, 2018

Resolved Date: Jan 16, 2017

Found In Version: 7.0.0.22

Fix Version: 7.0.0.23

Severity: Standard

Applicable for: Wind River Linux 7

Component/s: Userspace

Description

PHP through 5.6.27 and 7.x through 7.0.12 mishandles property modification during __wakeup processing, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via crafted serialized data, as demonstrated by Exception::__toString with DateInterval::__wakeup.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9138

Other Downloads

Wind River Linux 7.0.0.23
Wind River Linux 7.0.0.24
Wind River Linux 7.0.0.25
Wind River Linux 7.0.0.26
Wind River Linux 7.0.0.27
Wind River Linux 7.0.0.28
Wind River Linux 7.0.0.29
Wind River Linux 7.0.0.30
Wind River Linux 7.0.0.31

CVEs

CVE-2016-9138