CVE-2020-7059 — Out-of-bounds Read in Group PHP

CWE-125 — Out-of-bounds Read CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer11 documents8 sources

Severity

9.1CRITICALNVD

CNA6.5OSV6.5

EPSS

2.4%

top 15.01%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Group PHP PHP Tenable Tenable.sc +4 more

Timeline

PublishedFeb 10

Latest updateMay 24

Description

When using fgetss() function to read data with stripping tags, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause this function to read past the allocated buffer. This may lead to information disclosure or crash.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:HExploitability: 3.9 | Impact: 5.2

Affected Packages6 packages

▶NVDphp/php7.2.0 — 7.2.27+2

▶CVEListV5php_group/php7.2.x — 7.2.27+2

▶NVDtenable/tenable.sc< 5.19.0

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.29+esm10

▶NVDoracle/communications_diameter_signaling_router8.0 — 8.4

Also affects: Debian Linux 8.0

Patches

Patch: usn.ubuntu.com ↗Patch: www.tenable.com ↗Patch: usn.ubuntu.com ↗

🔴Vulnerability Details

GHSA

GHSA-q8qf-vj8v-x7r9: When using fgetss() function to read data with stripping tags, in PHP versions 7↗2022-05-24

▶

OSV

php7.0 regression↗2020-02-19

▶

OSV

php5, php7.0, php7.2, php7.3 vulnerabilities↗2020-02-17

▶

OSV

CVE-2020-7059: When using fgetss() function to read data with stripping tags, in PHP versions 7↗2020-02-10

▶

CVEList

OOB read in php_strip_tags_ex↗2020-02-10

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2020-02-17

▶

Red Hat

php: Out of bounds read in php_strip_tags_ex↗2020-01-23

▶

Debian

CVE-2020-7059: php7.4 - When using fgetss() function to read data with stripping tags, in PHP versions 7...↗2020

▶

💬Community

Bugzilla

CVE-2020-7059 php: Out of bounds read in php_strip_tags_ex↗2020-02-03

▶

Bugzilla

CVE-2020-7059 php: Out of bounds read in php_strip_tags_ex [fedora-all]↗2020-02-03

▶