It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-7479)
It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9137)
It was discovered that PHP incorrectly handled unserializing certain wddxPacket XML documents. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9935)
It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-9936)
It was discovered that PHP incorrectly handled certain EXIF data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2016-10158)
It was discovered that PHP incorrectly handled certain PHAR archives. A remote attacker could use this issue to cause PHP to crash or consume resources, resulting in a denial of service. (CVE-2016-10159)
It was discovered that PHP incorrectly handled certain PHAR archives. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2016-10160)
It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2016-10161)
It was discovered that PHP incorrectly handled unserializing certain wddxPacket XML documents. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. (CVE-2016-10162)
It was discovered that PHP incorrectly handled certain invalid objects when unserializing data. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2017-5340)
{ "availability": "No subscription required", "binaries": [ { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "libapache2-mod-php7.0" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "libphp7.0-embed" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-bcmath" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-bz2" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-cgi" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-cli" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-common" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-curl" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-dba" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-dev" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-enchant" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-fpm" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-gd" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-gmp" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-imap" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-interbase" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-intl" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-json" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-ldap" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-mbstring" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-mcrypt" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-mysql" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-odbc" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-opcache" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-pgsql" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-phpdbg" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-pspell" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-readline" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-recode" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-snmp" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-soap" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-sqlite3" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-sybase" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-tidy" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-xml" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-xmlrpc" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-xsl" }, { "binary_version": "7.0.15-0ubuntu0.16.04.2", "binary_name": "php7.0-zip" } ] }
{ "cves_map": { "ecosystem": "Ubuntu:16.04:LTS", "cves": [ { "id": "CVE-2016-7479", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2016-9137", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2016-9935", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2016-9936", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2016-10158", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2016-10159", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2016-10160", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] }, { "id": "CVE-2016-10161", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2016-10162", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H" }, { "type": "Ubuntu", "score": "low" } ] }, { "id": "CVE-2017-5340", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ] } ] } }