Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2015-7803

The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.

Published

2015-12-11T12:00:11.387

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 6.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	php	php	≤ 5.5.29	Yes
Application	php	php	5.6.1	Yes
Application	php	php	5.6.2	Yes
Application	php	php	5.6.3	Yes
Application	php	php	5.6.4	Yes
Application	php	php	5.6.5	Yes
Application	php	php	5.6.6	Yes
Application	php	php	5.6.7	Yes
Application	php	php	5.6.8	Yes
Application	php	php	5.6.9	Yes
Application	php	php	5.6.10	Yes
Application	php	php	5.6.11	Yes
Application	php	php	5.6.12	Yes
Application	php	php	5.6.13	Yes
Operating System	apple	mac_os_x	≤ 10.11.1	Yes

References

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=d698f0ae51f67c9cce870b09c59df3d6ba959244 ([email protected])
http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html ([email protected])
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2016-01/msg00099.html ([email protected])
http://lists.opensuse.org/opensuse-updates/2016-02/msg00037.html ([email protected])
http://www.debian.org/security/2015/dsa-3380 ([email protected])
http://www.openwall.com/lists/oss-security/2015/10/05/8 ([email protected])
http://www.php.net/ChangeLog-5.php ([email protected])
http://www.securityfocus.com/bid/76959 ([email protected])
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.461720 ([email protected])
http://www.ubuntu.com/usn/USN-2786-1 ([email protected])
https://bugs.php.net/bug.php?id=69720 Vendor Advisory ([email protected])
https://security.gentoo.org/glsa/201606-10 ([email protected])
https://support.apple.com/HT205637 Vendor Advisory ([email protected])
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=d698f0ae51f67c9cce870b09c59df3d6ba959244 (af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2016-01/msg00099.html (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2016-02/msg00037.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2015/dsa-3380 (af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2015/10/05/8 (af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/ChangeLog-5.php (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/76959 (af854a3a-2127-422b-91ae-364da2661108)
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.461720 (af854a3a-2127-422b-91ae-364da2661108)
http://www.ubuntu.com/usn/USN-2786-1 (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.php.net/bug.php?id=69720 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://security.gentoo.org/glsa/201606-10 (af854a3a-2127-422b-91ae-364da2661108)
https://support.apple.com/HT205637 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)