The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification.
References
| Link | Resource |
|---|---|
| http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=12fe4e90be7bfa2a763197079f68f5568a14e071 | |
| http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html | Mailing List Third Party Advisory |
| http://lists.opensuse.org/opensuse-updates/2013-12/msg00125.html | Mailing List Third Party Advisory |
| http://lists.opensuse.org/opensuse-updates/2013-12/msg00126.html | Mailing List Third Party Advisory |
| http://rhn.redhat.com/errata/RHSA-2014-1765.html | Third Party Advisory |
| http://www.debian.org/security/2013/dsa-2816 | Third Party Advisory |
| http://www.ubuntu.com/usn/USN-2055-1 | Third Party Advisory |
| https://bugs.php.net/bug.php?id=66060 | Issue Tracking Patch Vendor Advisory |
| https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04463322 | Third Party Advisory |
| https://support.apple.com/HT204659 | Third Party Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
31 Oct 2022, 15:01
| Type | Values Removed | Values Added |
|---|---|---|
| References | (SUSE) http://lists.opensuse.org/opensuse-updates/2013-12/msg00125.html - Mailing List, Third Party Advisory | |
| References | (CONFIRM) http://git.php.net/?p=php-src.git;a=commit;h=12fe4e90be7bfa2a763197079f68f5568a14e071 - Patch, Vendor Advisory | |
| References | (SUSE) http://lists.opensuse.org/opensuse-updates/2013-12/msg00126.html - Mailing List, Third Party Advisory | |
| References | (MISC) https://bugs.php.net/bug.php?id=66060 - Issue Tracking, Patch, Vendor Advisory | |
| References | (REDHAT) http://rhn.redhat.com/errata/RHSA-2014-1765.html - Third Party Advisory | |
| References | (DEBIAN) http://www.debian.org/security/2013/dsa-2816 - Third Party Advisory | |
| References | (HP) https://h20564.www2.hp.com/hpsc/doc/public/display?docId=emr_na-c04463322 - Third Party Advisory | |
| References | (APPLE) http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html - Mailing List, Third Party Advisory | |
| References | (UBUNTU) http://www.ubuntu.com/usn/USN-2055-1 - Third Party Advisory | |
| References | (CONFIRM) https://support.apple.com/HT204659 - Third Party Advisory | |
| CPE | cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:rc2:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:beta3:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:beta2:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:rc1:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:beta1:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:beta4:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:* cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:* |
cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:13.04:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:* cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:* |
Information
Published : 2013-11-28 04:37
Updated : 2024-02-04 18:16
NVD link : CVE-2013-6712
Mitre link : CVE-2013-6712
CVE.ORG link : CVE-2013-6712
JSON object : View
Products Affected
debian
- debian_linux
opensuse
- opensuse
canonical
- ubuntu_linux
php
- php
apple
- mac_os_x
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer