CVE-2016-10161

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2016-10161
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10161.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-10161
Downstream
Related
Published
2017-01-24T21:59:00.260Z
Modified
2026-04-01T23:53:21.743130Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The objectcommon1 function in ext/standard/varunserializer.c in PHP before 5.6.30, 7.0.x before 7.0.15, and 7.1.x before 7.1.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via crafted serialized data that is mishandled in a finishnesteddata call.

References

Affected packages

Git / github.com/php/php-src

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
b4e4201c1c18eff67450b7d73ff028b81610e749
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
60fffd296abce5fc071f3c173c25a2696cf683c6
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4054ec69da7631046f19d54ab06f09728a208b8b
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
038c63cdea0472176ec2fdb162cfbd96e8c5f83e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4e1b8701573698f56e12672e4991d7e6239138d2
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e09845d32614a19188632f410316478fbb440ebd
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
249a8fd9ae2324c84ede7ecfca6f6026e6d87df6
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
734a5fca2c4731e34eca551f28be9a10ffc3f3c9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
fb59213fc461f079bc218abf44cb5e2b4db2182c
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
a36407215f69ba2debf77933dcb3faa0c3ba2d04
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
9d582eba7448f1495fae62b13d95d2844ce6b28a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
da12ca9c1ed03084e6803f5e81e46f2e0a80460a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
e2874f7bf990ed58ba6f7abccefa2c00a0447fc7
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
140e2adb5ab8a5ed0624366c0416f07b8aa17254
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
721bcb2b7e7d283f89c300caed54a532e7fc5ddf
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
94933677a34de91b54ecd3cbe44770b7c204dc8a
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
0221e9f827632942225586687a33cfd554860d5e
Fixed
16b3003ffc6393e250f069aa28a78dc5a2c064b2
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "5.6.29"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.0"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.4"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.5"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.7"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.8"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.9"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.10"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.11"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.12"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.13"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.0.14"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "7.1.0"
        }
    ]
}

Affected versions

Other
BEFORE_ARG_INFO
BEFORE_BIG_SYMBOL_CHANGE
BEFORE_EXP_MERGE
BEFORE_FD_REAPPLY
BEFORE_FD_REVERT
BEFORE_HANDLERS_RESHUFFLE
BEFORE_HEAD_NS_CHANGE
BEFORE_HEAD_NS_CHANGES_MERGE
BEFORE_IMPORT_OF_MYSQLND
BEFORE_IMPORT_OF_MYSQLND_IN_5_3
BEFORE_NEW_OBJECT_MODEL
BEFORE_NEW_OPERATOR_FIX
BEFORE_NEW_OUTPUT_API
BEFORE_NEW_PARAMETER_PARSE
BEFORE_NS_RULES_CHANGE
BEFORE_OBJECTS_STORE
BEFORE_PARAM_PARSING_CHANGE
BEFORE_PHP4_APACHE_MODULE_CHANGE
BEFORE_PRE_SHUTDOWN_REVERSE_PATCH
BEFORE_REAL_IMPORT_OF_MYSQLND
BEFORE_REMOVING_AI_COUNT_FINAL_STEP
BEFORE_REMOVING_GC_STEP1
BEFORE_REMOVING_GC_STEP2
BEFORE_RENAMING
BEFORE_SAPIFICATION_FEB_10_2000
BEFORE_SAPI_POST_PATCH_17_FEB_2000
BEFORE_STACK_PATCH
BEFORE_UNICODE_MERGE
CLOSED_BETA
ChangeLog
INITIAL_IMPORT_SOURCEFORGE
MODERN_SYMMETRIC_SESSION_BEHAVIOUR_20021003
NEWS
NEWS-cvs2svn
NEW_UI_API_BP
PHP_4_3_before_13561_fix
PHP_5_0_dev_before_13561_fix
PHP_5_2_15RC1
POST_64BIT_BRANCH_MERGE
POST_AST_MERGE
POST_NATIVE_TLS_MERGE
POST_PARAMETER_PARSING_API
POST_PHP7_EREG_MYSQL_REMOVALS
POST_PHP7_NSAPI_REMOVAL
POST_PHP7_REMOVALS
POST_PHPNG_MERGE
POST_SUBST_Z_MACROS
PRE_64BIT_BRANCH_MERGE
PRE_AST_MERGE
PRE_DELAYED_ARRAY_FETCH_PATCH
PRE_EIGHT_BYTE_ALLOC_PATCH
PRE_ENGINE2_SPLIT
PRE_FETCH_READ_PATCH
PRE_FILE_COMPILE_API_CHANGE
PRE_FUNC_RETURNS_OBJECT_PATCH
PRE_GRANULAR_GARBAGE_FIX
PRE_ISSET_PATCH
PRE_ISSET_TYPE
PRE_LIBMYSQL_REVERT
PRE_LIBZEND_TO_ZEND
PRE_METHOD_CALL_SEPERATE_FIX_PATCH
PRE_METHOD_DEREFERENCE_PATCH
PRE_NATIVE_TLS_MERGE
PRE_NEW_OCI8_EXTENSION
PRE_NEW_VM_GEN_PATCH
PRE_PARAMETER_PARSING_API
PRE_PHP7_EREG_MYSQL_REMOVALS
PRE_PHP7_NSAPI_REMOVAL
PRE_PHP7_REMOVALS
PRE_PHPNG_MERGE
PRE_RETURN_REF_MERGE
PRE_RETURN_REF_PATCH
PRE_SUBST_Z_MACROS
PRE_TSRM_MERGE_PATCH
PRE_USED_RETURN_VALUE_PATCH
PRE_ZEND_VM_DISPATCH_PATCH
RELEASE_0_1
RELEASE_0_10
RELEASE_0_11
RELEASE_0_1_1
RELEASE_0_2
RELEASE_0_2_0
RELEASE_0_2_1
RELEASE_0_2_2
RELEASE_0_2_3
RELEASE_0_2_4
RELEASE_0_3
RELEASE_0_4
RELEASE_0_5
RELEASE_0_5_2
RELEASE_0_5_3
RELEASE_0_6
RELEASE_0_7
RELEASE_0_9
RELEASE_0_90
RELEASE_0_91
RELEASE_0_9_0
RELEASE_0_9_1
RELEASE_0_9_2
RELEASE_0_9_3
RELEASE_0_9_4
RELEASE_0_9b
RELEASE_1_0
RELEASE_1_0RC1
RELEASE_1_0RC2
RELEASE_1_0_0RC1
RELEASE_1_0_1
RELEASE_1_0_2
RELEASE_1_0_3
RELEASE_1_0_4
RELEASE_1_0b1
RELEASE_1_0b2
RELEASE_1_0b3
RELEASE_1_1
RELEASE_1_1_0
RELEASE_1_1_1
RELEASE_1_2
RELEASE_1_2_0
RELEASE_1_2_1
RELEASE_1_2_2
RELEASE_1_2_3
RELEASE_1_2_4
RELEASE_1_2_5
RELEASE_1_2b5
RELEASE_1_3
RELEASE_1_3_1
RELEASE_1_3_5
RELEASE_1_3b2
RELEASE_1_3b3
RELEASE_1_3b6
RELEASE_1_4
RELEASE_1_5
RELEASE_2_0_0
RELEASE_2_0_0RC1
RELEASE_2_0_0a1
RELEASE_2_0_0a2
RELEASE_2_0_0b1
RELEASE_2_0_1
RELEASE_2_0_2
RETURN_REF_BP
SAFEGUARD_3_0_BETA1_RC1_26062002
SPL_ALPHA
SQLITE_4_3_20041227
ZEND_OPTIMIZER_B1
ZO_B1
before-sapi-split
dev
help
php4
php5_5_0
php_ibase_before_split
xmlrpc_epi_0_51_merge_pt
PHP-4.*
PHP-4.0-RC1
PHP-5.*
PHP-5.4.1-RC1
php-4.*
php-4.0.0
php-4.0.1
php-4.0.1RC
php-4.0.1RC2
php-4.0.1pl1
php-4.0.2
php-4.0.2RC1
php-4.0.3
php-4.0.3RC1
php-4.0.3RC2
php-4.0.4RC3
php-4.0.4RC4
php-4.0.4RC5
php-4.0.4RC6
php-4.0.4REL
php-4.0.4pl1
php-4.0.4pl1RC1
php-4.0.4pl1RC2
php-4.0.5
php-4.0.5RC1
php-4.0.5RC2
php-4.0.5RC3
php-4.0.5RC4
php-4.0.5RC5
php-4.0.5RC6
php-4.0.5RC7
php-4.0.5RC8
php-4.0.6
php-4.0.6RC1
php-4.0.6RC2
php-4.0.6RC3
php-4.0.6RC4
php-4.0.7RC1
php-4.0.7RC2
php-4.0.7RC3
php-4.0RC1
php-4.0RC2
php-4.0b1
php-4.0b2
php-4.0b3
php-4.0b3_RC2
php-4.0b3_RC3
php-4.0b3_RC4
php-4.0b3_RC5
php-4.0b4
php-4.0b4_rc1
php-4.0b4pl1
php-4.1.0
php-4.1.0RC1
php-4.1.0RC2
php-4.1.0RC3
php-4.1.0RC4
php-4.1.0RC5
php-4.1.1
php-4.1.2
php-4.2.0
php-4.2.0RC1
php-4.2.0RC2
php-4.2.0RC3
php-4.2.0RC4
php-4.2.1
php-4.2.1RC1
php-4.2.1RC2
php-4.2.2
php-4.2.3
php-4.2.3RC1
php-4.2.3RC2
php-4.3.0
php-4.3.0RC1
php-4.3.0RC2
php-4.3.0RC3
php-4.3.0RC4
php-4.3.0dev
php-4.3.0dev-ZendEngine2
php-4.3.0dev-ZendEngine2-Preview1
php-4.3.0dev_zend2_alpha1
php-4.3.0dev_zend2_alpha2
php-4.3.0dev_zend2_alpha3
php-4.3.0pre1
php-4.3.0pre2
php-4.3.1
php-4.3.10
php-4.3.10RC1
php-4.3.10RC2
php-4.3.11
php-4.3.11RC1
php-4.3.11RC2
php-4.3.2
php-4.3.2RC1
php-4.3.2RC2
php-4.3.2RC3
php-4.3.2RC4
php-4.3.3
php-4.3.3RC1
php-4.3.3RC2
php-4.3.3RC3
php-4.3.3RC4
php-4.3.4
php-4.3.4RC1
php-4.3.4RC2
php-4.3.4RC3
php-4.3.5
php-4.3.5RC1
php-4.3.5RC2
php-4.3.5RC3
php-4.3.5RC4
php-4.3.6
php-4.3.6RC1
php-4.3.6RC2
php-4.3.6RC3
php-4.3.7
php-4.3.7RC1
php-4.3.8
php-4.3.9
php-4.3.9RC1
php-4.3.9RC2
php-4.3.9RC3
php-4.4.0
php-4.4.0RC1
php-4.4.0RC2
php-4.4.1
php-4.4.1RC1
php-4.4.2
php-4.4.2RC1
php-4.4.2RC2
php-4.4.3
php-4.4.3RC1
php-4.4.3RC2
php-4.4.4
php-4.4.4RC1
php-4.4.5
php-4.4.5RC1
php-4.4.5RC2
php-4.4.6
php-4.4.6RC1
php-4.4.7
php-4.4.7RC1
php-4.4.8
php-4.4.8RC1
php-4.4.9
php-4.4.9RC1
php-5.*
php-5.0.0
php-5.0.0RC1
php-5.0.0RC1RC1
php-5.0.0RC1RC2
php-5.0.0RC2
php-5.0.0RC2RC1
php-5.0.0RC2RC2
php-5.0.0RC3
php-5.0.0RC3RC1
php-5.0.0RC3RC2
php-5.0.0RC4
php-5.0.0b1
php-5.0.0b2
php-5.0.0b2RC1
php-5.0.0b3
php-5.0.0b3RC1
php-5.0.0b3RC2
php-5.0.0b4
php-5.0.0b4RC1
php-5.0.1
php-5.0.1RC1
php-5.0.1RC2
php-5.0.1b1
php-5.0.2
php-5.0.2RC1
php-5.0.3
php-5.0.3RC1
php-5.0.3RC2
php-5.0.4
php-5.0.4RC1
php-5.0.4RC2
php-5.0.5
php-5.0.5RC1
php-5.0.5RC2
php-5.1.0
php-5.1.0RC1
php-5.1.0RC2
php-5.1.0RC2_PRE
php-5.1.0RC3
php-5.1.0RC4
php-5.1.0RC5
php-5.1.0RC6
php-5.1.0b1
php-5.1.0b2
php-5.1.0b3
php-5.1.1
php-5.1.2
php-5.1.2RC1
php-5.1.2RC2
php-5.1.3
php-5.1.3RC1
php-5.1.3RC2
php-5.1.3RC3
php-5.1.4
php-5.1.5
php-5.1.5RC1
php-5.1.6
php-5.2.0
php-5.2.0RC1
php-5.2.0RC2
php-5.2.0RC3
php-5.2.0RC4
php-5.2.0RC5
php-5.2.0RC6
php-5.2.1
php-5.2.10
php-5.2.10RC1
php-5.2.10RC2
php-5.2.11
php-5.2.11RC1
php-5.2.11RC2
php-5.2.11RC3
php-5.2.12
php-5.2.12RC1
php-5.2.12RC2
php-5.2.12RC3
php-5.2.12RC4
php-5.2.13
php-5.2.13RC1
php-5.2.13RC2
php-5.2.14
php-5.2.14RC1
php-5.2.14RC2
php-5.2.14RC3
php-5.2.15
php-5.2.15RC1
php-5.2.15RC2
php-5.2.16
php-5.2.17
php-5.2.1RC1
php-5.2.1RC2
php-5.2.1RC3
php-5.2.1RC4
php-5.2.2
php-5.2.2RC1
php-5.2.2RC2
php-5.2.3
php-5.2.3RC1
php-5.2.4
php-5.2.4RC1
php-5.2.4RC2
php-5.2.4RC3
php-5.2.5
php-5.2.5RC1
php-5.2.5RC2
php-5.2.6
php-5.2.6RC1
php-5.2.6RC2
php-5.2.6RC3
php-5.2.6RC4
php-5.2.6RC5
php-5.2.7
php-5.2.7RC1
php-5.2.7RC2
php-5.2.7RC3
php-5.2.7RC4
php-5.2.7RC5
php-5.2.8
php-5.2.9
php-5.2.9RC1
php-5.2.9RC2
php-5.2.9RC3
php-5.3.0
php-5.3.0RC1
php-5.3.0RC2
php-5.3.0RC3
php-5.3.0RC4
php-5.3.0alpha1
php-5.3.0alpha2
php-5.3.0alpha3
php-5.3.0beta1
php-5.3.1
php-5.3.10
php-5.3.11
php-5.3.11RC1
php-5.3.11RC2
php-5.3.12
php-5.3.13
php-5.3.14
php-5.3.14RC1
php-5.3.14RC2
php-5.3.15
php-5.3.15RC1
php-5.3.16
php-5.3.17
php-5.3.18
php-5.3.18RC1
php-5.3.19
php-5.3.19RC1
php-5.3.1RC1
php-5.3.1RC2
php-5.3.1RC3
php-5.3.1RC4
php-5.3.2
php-5.3.20
php-5.3.20RC1
php-5.3.21
php-5.3.21RC1
php-5.3.22
php-5.3.22RC1
php-5.3.22RC2
php-5.3.23
php-5.3.23RC1
php-5.3.24
php-5.3.24RC1
php-5.3.25
php-5.3.25RC1
php-5.3.26
php-5.3.26RC1
php-5.3.27
php-5.3.27RC1
php-5.3.28
php-5.3.29
php-5.3.29RC1
php-5.3.2RC1
php-5.3.2RC2
php-5.3.2RC3
php-5.3.3
php-5.3.3RC1
php-5.3.3RC2
php-5.3.3RC3
php-5.3.4
php-5.3.4RC1
php-5.3.4RC2
php-5.3.5
php-5.3.6
php-5.3.6RC1
php-5.3.6RC2
php-5.3.6RC3
php-5.3.7
php-5.3.7RC1
php-5.3.7RC2
php-5.3.7RC3
php-5.3.7RC4
php-5.3.7RC5
php-5.3.8
php-5.3.9
php-5.3.9RC1
php-5.3.9RC2
php-5.3.9RC3
php-5.3.9RC4
php-5.4.0
php-5.4.0RC1
php-5.4.0RC2
php-5.4.0RC3
php-5.4.0RC4
php-5.4.0RC5
php-5.4.0RC6
php-5.4.0RC7
php-5.4.0RC8
php-5.4.0alpha1
php-5.4.0alpha2
php-5.4.0alpha3
php-5.4.0beta1
php-5.4.0beta2
php-5.4.1
php-5.4.10
php-5.4.10RC1
php-5.4.11
php-5.4.11RC1
php-5.4.12
php-5.4.12RC1
php-5.4.12RC2
php-5.4.13
php-5.4.13RC1
php-5.4.14
php-5.4.14RC1
php-5.4.15
php-5.4.15RC1
php-5.4.16
php-5.4.16RC1
php-5.4.17
php-5.4.17RC1
php-5.4.18
php-5.4.18RC1
php-5.4.18RC2
php-5.4.19
php-5.4.1RC1
php-5.4.1RC2
php-5.4.2
php-5.4.20
php-5.4.20RC1
php-5.4.21
php-5.4.21RC1
php-5.4.22
php-5.4.22RC1
php-5.4.23
php-5.4.23RC1
php-5.4.24
php-5.4.24RC1
php-5.4.25
php-5.4.25RC1
php-5.4.26
php-5.4.26RC1
php-5.4.27
php-5.4.27RC1
php-5.4.28
php-5.4.28RC1
php-5.4.29
php-5.4.29RC1
php-5.4.3
php-5.4.30
php-5.4.30RC1
php-5.4.31
php-5.4.31RC1
php-5.4.32
php-5.4.32RC1
php-5.4.33
php-5.4.33RC1
php-5.4.34
php-5.4.35
php-5.4.36
php-5.4.37
php-5.4.38
php-5.4.39
php-5.4.4
php-5.4.40
php-5.4.41
php-5.4.42
php-5.4.43
php-5.4.44
php-5.4.45
php-5.4.4RC1
php-5.4.4RC2
php-5.4.5
php-5.4.5RC1
php-5.4.6
php-5.4.6RC1
php-5.4.7
php-5.4.7RC1
php-5.4.8
php-5.4.8RC1
php-5.4.9
php-5.4.9RC1
php-5.5.0
php-5.5.0RC1
php-5.5.0RC2
php-5.5.0RC3
php-5.5.0alpha1
php-5.5.0alpha2
php-5.5.0alpha3
php-5.5.0alpha4
php-5.5.0alpha5
php-5.5.0alpha6
php-5.5.0beta1
php-5.5.0beta2
php-5.5.0beta3
php-5.5.0beta4
php-5.5.1
php-5.5.10
php-5.5.10RC1
php-5.5.11
php-5.5.11RC1
php-5.5.12
php-5.5.12RC1
php-5.5.13
php-5.5.13RC1
php-5.5.14
php-5.5.14RC1
php-5.5.15
php-5.5.15RC1
php-5.5.16
php-5.5.16RC1
php-5.5.17
php-5.5.17RC1
php-5.5.18
php-5.5.18RC1
php-5.5.19
php-5.5.19RC1
php-5.5.2
php-5.5.20
php-5.5.20RC1
php-5.5.21
php-5.5.21RC1
php-5.5.22
php-5.5.22RC1
php-5.5.23
php-5.5.23RC1
php-5.5.24
php-5.5.24RC1
php-5.5.25
php-5.5.25RC1
php-5.5.26
php-5.5.26RC1
php-5.5.27
php-5.5.27RC1
php-5.5.28
php-5.5.29
php-5.5.2RC1
php-5.5.3
php-5.5.30
php-5.5.31
php-5.5.32
php-5.5.33
php-5.5.34
php-5.5.35
php-5.5.36
php-5.5.37
php-5.5.38
php-5.5.4
php-5.5.4RC1
php-5.5.5
php-5.5.5RC1
php-5.5.6
php-5.5.6RC1
php-5.5.7
php-5.5.7RC1
php-5.5.8
php-5.5.8RC1
php-5.5.9
php-5.5.9RC1
php-5.6.0
php-5.6.0RC1
php-5.6.0RC2
php-5.6.0RC3
php-5.6.0RC4
php-5.6.0alpha1
php-5.6.0alpha2
php-5.6.0alpha3
php-5.6.0beta1
php-5.6.0beta2
php-5.6.0beta3
php-5.6.0beta4
php-5.6.1
php-5.6.10
php-5.6.10RC1
php-5.6.11
php-5.6.11RC1
php-5.6.12
php-5.6.12RC1
php-5.6.13
php-5.6.13RC1
php-5.6.14
php-5.6.14RC1
php-5.6.15
php-5.6.15RC1
php-5.6.16
php-5.6.16RC1
php-5.6.17
php-5.6.17RC1
php-5.6.18
php-5.6.18RC1
php-5.6.19
php-5.6.19RC1
php-5.6.1RC1
php-5.6.2
php-5.6.20
php-5.6.20RC1
php-5.6.21
php-5.6.21RC1
php-5.6.22
php-5.6.22RC1
php-5.6.23
php-5.6.23RC1
php-5.6.24
php-5.6.24RC1
php-5.6.25
php-5.6.25RC1
php-5.6.26
php-5.6.26RC1
php-5.6.27
php-5.6.27RC1
php-5.6.28
php-5.6.28RC1
php-5.6.29
php-5.6.29RC1
php-5.6.3
php-5.6.3RC1
php-5.6.4
php-5.6.4RC1
php-5.6.5
php-5.6.5RC1
php-5.6.6
php-5.6.6RC1
php-5.6.7
php-5.6.7RC1
php-5.6.8
php-5.6.8RC1
php-5.6.9
php-5.6.9RC1
php-7.*
php-7.0.0
php-7.0.0RC1
php-7.0.0RC2
php-7.0.0RC3
php-7.0.0RC4
php-7.0.0RC5
php-7.0.0RC6
php-7.0.0RC7
php-7.0.0RC8
php-7.0.0alpha1
php-7.0.0alpha2
php-7.0.0beta1
php-7.0.0beta2
php-7.0.0beta3
php-7.0.1
php-7.0.10
php-7.0.10RC1
php-7.0.11
php-7.0.11RC1
php-7.0.12
php-7.0.12RC1
php-7.0.13
php-7.0.13RC1
php-7.0.14
php-7.0.14RC1
php-7.0.1RC1
php-7.0.2
php-7.0.2RC1
php-7.0.3
php-7.0.3RC1
php-7.0.4
php-7.0.4RC1
php-7.0.5
php-7.0.5RC1
php-7.0.6
php-7.0.6RC1
php-7.0.7
php-7.0.7RC1
php-7.0.8
php-7.0.8RC1
php-7.0.9
php-7.0.9RC1
php-7.1.0
php-7.1.0RC1
php-7.1.0RC2
php-7.1.0RC3
php-7.1.0RC4
php-7.1.0RC5
php-7.1.0RC6
php-7.1.0alpha1
php-7.1.0alpha2
php-7.1.0alpha3
php-7.1.0beta1
php-7.1.0beta2
php-7.1.0beta3

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-10161.json"
vanir_signatures 
[
    {
        "deprecated": false,
        "signature_type": "Function",
        "signature_version": "v1",
        "digest": {
            "function_hash": "102014736888371947073622309327152596049",
            "length": 313.0
        },
        "source": "https://github.com/php/php-src/commit/16b3003ffc6393e250f069aa28a78dc5a2c064b2",
        "id": "CVE-2016-10161-3b9c5256",
        "target": {
            "file": "ext/standard/var_unserializer.c",
            "function": "object_common1"
        }
    },
    {
        "deprecated": false,
        "signature_type": "Line",
        "signature_version": "v1",
        "digest": {
            "line_hashes": [
                "156659818536995479401509881781153512977",
                "332411611261216109036119952550949627613",
                "175154365176312667493289913859517617239",
                "292808490699705175769846566855350577236",
                "204434093787147435695643524830940913973",
                "320404238966101544780012746116739028271",
                "254394193571028949476121628024199669157",
                "115826316860869632762850898256170057526",
                "288492443928640837034179369550419455465",
                "133597691269487802737759265767477076106",
                "133241928916394438999813332856060650490",
                "309069877246144241021183162857731752804",
                "300149141241140382422723902163337113949",
                "14537897399130975906325317205706474113",
                "135217159720101803264493392694616503520",
                "185283076345212462460319318519649780313",
                "108619621929876402586697073964540229436",
                "170971560399662829679597257279898093945",
                "94274429891472346158462649840890783608",
                "252924041623091431529690206662692415087",
                "135128096153015951808915615995313681469",
                "131619494778740792699116875231065282177",
                "317618530951820823023060414865401146756",
                "290489602454746427164461411655086850817",
                "148091462504421943564866916766665278755",
                "209812401911288028761332120089306364792",
                "248469110157997342180112564542801052355",
                "70020660201742646952249257863737609102",
                "301943635684423793388392119989171192422",
                "40252293043020688685497495068642280938",
                "91594551533227649248260845118997565747",
                "214007313744332650750185026050483657036",
                "111319538503803771628706851971394481706",
                "244404457169388937967563546267485743000",
                "51764611741152284502137778962470086133",
                "121211149818397940948596097403179740791",
                "124549686909994422343267069861448504208",
                "86604770935606210151290431002680849145",
                "322295431206784981122893089000068246954",
                "144854636401275310515902943222557455535",
                "240376856352271781753213191599085365136",
                "75389880859964568614716422307806993942",
                "131394561621523499781273345186884665026",
                "269344781322131441083608982517773901734",
                "63715437653235278129229794125032662148",
                "116832660271284920756294505450241968017",
                "25968016611702531840726495991311735263",
                "48314656578202292035288425544720254354",
                "81268529378724751960807935402108811495",
                "242903849568173550314315686971900602004",
                "289952286420159641552369844466606222201",
                "219777442382589674082647241951381047968",
                "203512797816867684133096412369260062681",
                "83316624676644098589983353475335242517",
                "222615053622175322934130995245001132284",
                "296323254794011160863202133311018479720",
                "317804225334766029110804062146121860382",
                "186664742860248452216040960675085258063",
                "278428620155752142638995760764112252093",
                "164756599401284224735253047706912681131",
                "236277780640987173307473841942057651246",
                "131453700100823837398392671304147153945",
                "93377686039681326460382529325332090830",
                "252642025292617061297567034208787785854",
                "105837189904120547275578161330148719999",
                "122695124371188015545299777422713641247",
                "106690670692583702481938425110489899852",
                "304119051236576772722763469777272013806",
                "28887068261345770513340006360061472811",
                "26280133394899063511596617912024520866",
                "307544587225187099823242738742231964521",
                "319581235034079905796705509909439236663",
                "162463844005770259670660752817855738370",
                "281966980067648074142240566543507404698",
                "294192437121896453685798446473529735239",
                "332362950513434373589925779088976557318",
                "108481352702888374011932934116500558828",
                "313438773159103981145298018448890417611",
                "219156078207585343436216815655929233414",
                "276214493963318764412424534748639683905",
                "41472256311408623347091202367731237368",
                "340226588820199043384612652998513531703",
                "303008292955944647144697137037776545327",
                "224866211994852054833883023846344453355",
                "85904425184399690027432215477446959133",
                "68308686890663402683343305057866492833",
                "186284636420507909642181281237471146931",
                "47097122779524089833671815772292756884",
                "37678903134115544278786524366861534611",
                "95113748457258960652270451863821414665",
                "323258015265784422023455444648171044409",
                "179747643586564489227379687069668531891",
                "242635727781932376784849390327411636973",
                "246219371449065516249945285850096598908",
                "111031523661467018242541877133279896151",
                "41425997854386759240047914135191211728",
                "153603517312343001461786959562384503529",
                "303177413990508647812165651295005986045",
                "184928466765896983686724124135951223638",
                "208332658735844803438330063883868864534",
                "111664045586250202426077714417272175202",
                "52745000606477910756160017957810204591",
                "51388981653003571918957703208683824275",
                "194469745212707854925036397979089728118",
                "84383999315842369499585587257702349447",
                "162028921666032764772388315493565288507",
                "51822975246475781917709858843502398203",
                "111330423438275767697563063323763280383",
                "326389986972610958986243871476829569596",
                "44401052975791225495741697253619455363",
                "313570138683617402028941989883696069615",
                "325169024165300323148198388953566181754",
                "322407698099982339444906360000862459888",
                "43093420482722734695652864146531921571",
                "102397668688437072526612661462575961794",
                "49457835069486511479137183234573342579",
                "297220464977272875635183875237861531565",
                "149330455243355885366588866922312608332",
                "289901322037952959099632678126383520970",
                "158275766494886894846308081583175902083",
                "244483168919666275356027592949487377141",
                "95589939382653840870153607230996668198",
                "96413379463859426235342842489805942111",
                "175295321965973290456496374677676168607",
                "73548063894324940807259246949041291648",
                "283637413765299367478168749713634756015",
                "169983434125104900482280482422699795451",
                "144324876620989193981448371400489921546",
                "216519841270810782881753630797795169707",
                "91468875349476294403202370719769848254",
                "152268322992391752766634161049229233651",
                "251449454170298881274153760483186219867",
                "328106744939042563559879595229177638190",
                "166814590317547466466707822212784960674"
            ],
            "threshold": 0.9
        },
        "source": "https://github.com/php/php-src/commit/16b3003ffc6393e250f069aa28a78dc5a2c064b2",
        "id": "CVE-2016-10161-d7bff264",
        "target": {
            "file": "ext/standard/var_unserializer.c"
        }
    },
    {
        "deprecated": false,
        "signature_type": "Function",
        "signature_version": "v1",
        "digest": {
            "function_hash": "198732413940183559551554626991973413187",
            "length": 17379.0
        },
        "source": "https://github.com/php/php-src/commit/16b3003ffc6393e250f069aa28a78dc5a2c064b2",
        "id": "CVE-2016-10161-f5aaf487",
        "target": {
            "file": "ext/standard/var_unserializer.c",
            "function": "php_var_unserialize"
        }
    }
]