CVE-2018-15503

Source
https://nvd.nist.gov/vuln/detail/CVE-2018-15503
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-15503.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2018-15503
Published
2018-08-18T02:29:01Z
Modified
2025-01-15T01:34:20.416753Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV.

References

Affected packages

Git / github.com/swoole/swoole-src

Affected ranges

Type
GIT
Repo
https://github.com/swoole/swoole-src
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Fixed

Affected versions

1.*

1.8.10-stable
1.8.11-alpha
1.8.11-beta
1.8.11-rc1
1.8.11-stable
1.8.12-alpha
1.8.12-beta
1.8.12-rc1
1.8.12-stable
1.8.13-alpha
1.8.13-beta
1.8.6-rc4
1.8.6-stable
1.8.7-rc1
1.8.7-stable
1.8.8-alpha
1.8.8-beta
1.8.8-rc1
1.8.8-stable
1.8.9-alpha
1.8.9-beta
1.8.9-rc1
1.8.9-stable

2.*

2.0.1-alpha
2.0.1-beta

swoole-1.*

swoole-1.5.0
swoole-1.5.1
swoole-1.5.2
swoole-1.5.3
swoole-1.5.4
swoole-1.5.5
swoole-1.5.6
swoole-1.5.7
swoole-1.5.8
swoole-1.5.9
swoole-1.5.9b
swoole-1.6.0
swoole-1.6.1
swoole-1.6.10
swoole-1.6.11-alpha
swoole-1.6.11-beta
swoole-1.6.11-stable
swoole-1.6.12-alpha
swoole-1.6.12-beta
swoole-1.6.12-stable
swoole-1.6.2
swoole-1.6.3
swoole-1.6.4
swoole-1.6.5
swoole-1.6.6
swoole-1.6.7
swoole-1.6.7-for-MacOS
swoole-1.6.8
swoole-1.6.9
swoole-1.7.0-alpha
swoole-1.7.0-stable
swoole-1.7.1-alpha
swoole-1.7.1-beta
swoole-1.7.1-stable
swoole-1.7.10-alpha
swoole-1.7.10-beta
swoole-1.7.10-for-ARM
swoole-1.7.10-rc1
swoole-1.7.10-rc2
swoole-1.7.10-rc3
swoole-1.7.10-rc4
swoole-1.7.10-rc5
swoole-1.7.10-stable
swoole-1.7.11-alpha
swoole-1.7.11-beta
swoole-1.7.11-rc1
swoole-1.7.11-rc2
swoole-1.7.11-stable
swoole-1.7.12-alpha
swoole-1.7.12-stable
swoole-1.7.13-alpha
swoole-1.7.13-beta
swoole-1.7.13-rc1
swoole-1.7.13-rc2
swoole-1.7.13-stable
swoole-1.7.14-alpha
swoole-1.7.14-beta
swoole-1.7.14-rc1
swoole-1.7.14-rc2
swoole-1.7.14-stable
swoole-1.7.15-alpha
swoole-1.7.15-beta
swoole-1.7.15-rc1
swoole-1.7.15-rc2
swoole-1.7.15-rc3
swoole-1.7.15-stable
swoole-1.7.16-alpha
swoole-1.7.16-beta
swoole-1.7.16-stable
swoole-1.7.17-alpha
swoole-1.7.17-beta
swoole-1.7.17-rc1
swoole-1.7.17-stable
swoole-1.7.18-alpha
swoole-1.7.18-beta
swoole-1.7.18-rc1
swoole-1.7.18-rc2
swoole-1.7.18-stable
swoole-1.7.19-alpha
swoole-1.7.19-beta
swoole-1.7.19-rc1
swoole-1.7.19-rc2
swoole-1.7.19-stable
swoole-1.7.2-alpha
swoole-1.7.2-beta
swoole-1.7.2-stable
swoole-1.7.20-alpha
swoole-1.7.20-beta
swoole-1.7.20-stable
swoole-1.7.21-alpha
swoole-1.7.21-beta
swoole-1.7.21-stable
swoole-1.7.22-alpha
swoole-1.7.22-beta
swoole-1.7.22-rc1
swoole-1.7.22-rc2
swoole-1.7.22-stable
swoole-1.7.3-alpha
swoole-1.7.3-beta
swoole-1.7.3-beta-2
swoole-1.7.3-stable
swoole-1.7.4-alpha
swoole-1.7.4-beta
swoole-1.7.4-stable
swoole-1.7.5-RC1
swoole-1.7.5-RC2
swoole-1.7.5-alpha
swoole-1.7.5-beta
swoole-1.7.5-stable
swoole-1.7.6-RC1
swoole-1.7.6-alpha
swoole-1.7.6-beta
swoole-1.7.6-stable
swoole-1.7.7-RC2
swoole-1.7.7-RC3
swoole-1.7.7-alpha
swoole-1.7.7-beta
swoole-1.7.7-stable
swoole-1.7.8-RC1
swoole-1.7.8-RC2
swoole-1.7.8-alpha
swoole-1.7.8-beta
swoole-1.7.8-stable
swoole-1.7.9-alpha
swoole-1.7.9-beta
swoole-1.7.9-rc1
swoole-1.7.9-rc2
swoole-1.7.9-rc3
swoole-1.7.9-rc4
swoole-1.7.9-stable
swoole-1.8.0-alpha
swoole-1.8.0-beta
swoole-1.8.0-rc2
swoole-1.8.0-stable
swoole-1.8.1-alpha
swoole-1.8.1-beta
swoole-1.8.1-stable
swoole-1.8.2-alpha
swoole-1.8.2-beta
swoole-1.8.2-rc1
swoole-1.8.2-rc2
swoole-1.8.2-stable
swoole-1.8.3-alpha
swoole-1.8.3-beta
swoole-1.8.3-rc1
swoole-1.8.3-rc2
swoole-1.8.3-stable
swoole-1.8.4-alpha
swoole-1.8.4-beta
swoole-1.8.4-rc1
swoole-1.8.4-stable
swoole-1.8.5-alpha
swoole-1.8.5-beta
swoole-1.8.5-rc1
swoole-1.8.5-rc2
swoole-1.8.5-stable
swoole-1.8.6-alpha
swoole-1.8.6-beta
swoole-1.8.6-rc1
swoole-1.8.6-rc2
swoole-1.8.6-rc3
swoole-1.8.7-alpha
swoole-1.8.7-beta

v1.*

v1.10.0
v1.10.1
v1.3.1
v1.3release
v1.4.0
v1.4.1
v1.4.2
v1.8.13-stable
v1.8.14-alpha
v1.9.0-alpha
v1.9.0-beta
v1.9.0-rc1
v1.9.0-stable
v1.9.1-alpha
v1.9.1-beta
v1.9.1-rc1
v1.9.1-stable
v1.9.10
v1.9.11
v1.9.12
v1.9.13
v1.9.14
v1.9.15
v1.9.16
v1.9.17
v1.9.18
v1.9.19
v1.9.2-alpha
v1.9.2-stable
v1.9.21
v1.9.22
v1.9.23
v1.9.3-stable
v1.9.4
v1.9.5
v1.9.6
v1.9.7
v1.9.8
v1.9.9

v2.*

v2.0.1
v2.0.10-alpha
v2.0.10-beta
v2.0.10-rc1
v2.0.10-rc2
v2.0.10-rc3
v2.0.10-stable
v2.0.11
v2.0.12
v2.0.2-alpha
v2.0.3
v2.0.4
v2.0.5
v2.0.6
v2.0.7
v2.0.8
v2.0.9
v2.1.0
v2.1.1
v2.1.2
v2.1.3

v3.*

v3.0.0-alpha

v4.*

v4.0.0
v4.0.0-alpha
v4.0.0-beta
v4.0.0-rc1