CVE-2015-4644

Published: May 16, 2016Modified: May 6, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

The php_pgsql_meta_data function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not validate token extraction for table names, which might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1352.

Affected (39)

Products: Redhat: Enterprise Linux · Php: Php

1 product

Enterprise Linux

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0

Configuration B

37 vulnerable

Vulnerable Software	Affected Versions
Php Php	Up to 5.4.41
Php Php	Version 5.5.0
Php Php	Version 5.5.10
Php Php	Version 5.5.11
Php Php	Version 5.5.12
Php Php	Version 5.5.13
Php Php	Version 5.5.14
Php Php	Version 5.5.15
Php Php	Version 5.5.16
Php Php	Version 5.5.17
Php Php	Version 5.5.18
Php Php	Version 5.5.19
Php Php	Version 5.5.1
Php Php	Version 5.5.20
Php Php	Version 5.5.21
Php Php	Version 5.5.22
Php Php	Version 5.5.23
Php Php	Version 5.5.24
Php Php	Version 5.5.25
Php Php	Version 5.5.2
Php Php	Version 5.5.3
Php Php	Version 5.5.4
Php Php	Version 5.5.5
Php Php	Version 5.5.6
Php Php	Version 5.5.7
Php Php	Version 5.5.8
Php Php	Version 5.5.9
Php Php	Version 5.6.0
Php Php	Version 5.6.1
Php Php	Version 5.6.2
Php Php	Version 5.6.3
Php Php	Version 5.6.4
Php Php	Version 5.6.5
Php Php	Version 5.6.6
Php Php	Version 5.6.7
Php Php	Version 5.6.8
Php Php	Version 5.6.9

References (22)

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64

Source: secalert@redhat.com

http://openwall.com/lists/oss-security/2015/06/18/6

Source: secalert@redhat.com

http://php.net/ChangeLog-5.php

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2015-1186.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2015-1187.html

Source: secalert@redhat.com

http://www.debian.org/security/2015/dsa-3344

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/75292

Source: secalert@redhat.com

http://www.securitytracker.com/id/1032709

Source: secalert@redhat.com

https://bugs.php.net/bug.php?id=69667

Source: secalert@redhat.com

https://security.gentoo.org/glsa/201606-10

Source: secalert@redhat.com

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64

Source: af854a3a-2127-422b-91ae-364da2661108

http://openwall.com/lists/oss-security/2015/06/18/6

Source: af854a3a-2127-422b-91ae-364da2661108

http://php.net/ChangeLog-5.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2015-1186.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2015-1187.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2015/dsa-3344

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/75292

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1032709

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.php.net/bug.php?id=69667

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201606-10

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.