CVE-2015-7803
published 2015-12-11CVE-2015-7803: The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL…
PriorityP431medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
10.29%
95.1th percentile
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
Affected
17 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | mac_os_x | <= 10.11.1 | — |
| apple | os_x_el_capitan_10.11.2_security_update_2015-005_yosemite_and_security_update_20 | — | — |
| php | php | <= 5.5.29 | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php5 | php5 | >= 0 < 5.5.9+dfsg-1ubuntu4.14 | 5.5.9+dfsg-1ubuntu4.14 |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_redhat6.8MEDIUM
vendor_ubuntu6.8MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xcr5-h66f-mcfq: The phar_get_entry_data function in ext/phar/util
ghsa_unreviewed·2022-05-17
CVE-2015-7803 [MEDIUM] GHSA-xcr5-h66f-mcfq: The phar_get_entry_data function in ext/phar/util
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
OSV
php5 vulnerabilities
osv·2015-10-28·CVSS 6.8
CVE-2015-7803 [MEDIUM] php5 vulnerabilities
php5 vulnerabilities
It was discovered that the PHP phar extension incorrectly handled certain
files. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service. (CVE-2015-7803, CVE-2015-7804)
OSV
CVE-2015-7803: The phar_get_entry_data function in ext/phar/util
osv·2015-10-12·CVSS 6.8
CVE-2015-7803 [MEDIUM] CVE-2015-7803: The phar_get_entry_data function in ext/phar/util
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
Ubuntu
PHP vulnerabilities
vendor_ubuntu·2015-10-28·CVSS 6.8
CVE-2015-7803 [MEDIUM] PHP vulnerabilities
Title: PHP vulnerabilities
Summary: PHP could be made to crash if it processed a specially crafted file.
It was discovered that the PHP phar extension incorrectly handled certain
files. A remote attacker could use this issue to cause PHP to crash,
resulting in a denial of service. (CVE-2015-7803, CVE-2015-7804)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
php: NULL pointer dereference in phar_get_fp_offset()
vendor_redhat·2015-10-01·CVSS 6.8
CVE-2015-7803 [MEDIUM] CWE-476 php: NULL pointer dereference in phar_get_fp_offset()
php: NULL pointer dereference in phar_get_fp_offset()
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a .phar file with a crafted TAR archive entry in which the Link indicator references a file that does not exist.
A flaw was found in the way the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash or, possibly, execute arbitrary code when opened.
Package: php (Red Hat Enterprise Linux 5) - Will not fix
Package: php53 (Red Hat Enterprise Linux 5) - Will not fix
Package: php (Red Hat Enterprise Linux 6) - Will not fix
Package: php (Red Hat Enterprise Linux 7) - Will not fix
Package: ph
Apple
CVE-2015-7803: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks
vendor_apple·CVSS 6.8
CVE-2015-7803 [MEDIUM] CVE-2015-7803: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks
Apple Security Update: About the security content of OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks
Product: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks
CVE: CVE-2015-7803
Component: CVE-2015-7803
No detection rules found.
No public exploits indexed.
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=d698f0ae51f67c9cce870b09c59df3d6ba959244http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.htmlhttp://lists.opensuse.org/opensuse-updates/2016-01/msg00099.htmlhttp://lists.opensuse.org/opensuse-updates/2016-02/msg00037.htmlhttp://www.debian.org/security/2015/dsa-3380http://www.openwall.com/lists/oss-security/2015/10/05/8http://www.php.net/ChangeLog-5.phphttp://www.securityfocus.com/bid/76959http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.461720http://www.ubuntu.com/usn/USN-2786-1https://bugs.php.net/bug.php?id=69720https://security.gentoo.org/glsa/201606-10https://support.apple.com/HT205637http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=d698f0ae51f67c9cce870b09c59df3d6ba959244http://lists.apple.com/archives/security-announce/2015/Dec/msg00005.htmlhttp://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.htmlhttp://lists.opensuse.org/opensuse-updates/2016-01/msg00099.htmlhttp://lists.opensuse.org/opensuse-updates/2016-02/msg00037.htmlhttp://www.debian.org/security/2015/dsa-3380http://www.openwall.com/lists/oss-security/2015/10/05/8http://www.php.net/ChangeLog-5.phphttp://www.securityfocus.com/bid/76959http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.461720http://www.ubuntu.com/usn/USN-2786-1https://bugs.php.net/bug.php?id=69720https://security.gentoo.org/glsa/201606-10https://support.apple.com/HT205637
2015-12-11
Published