PublicDateAtUSN: 2019-02-22 Candidate: CVE-2019-9023 PublicDate: 2019-02-22 23:29:00 UTC References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9023 https://ubuntu.com/security/notices/USN-3902-1 https://ubuntu.com/security/notices/USN-3902-2 Description: An issue was discovered in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1. A number of heap-based buffer over-read instances are present in mbstring regular expression functions when supplied with invalid multibyte data. These occur in ext/mbstring/oniguruma/regcomp.c, ext/mbstring/oniguruma/regexec.c, ext/mbstring/oniguruma/regparse.c, ext/mbstring/oniguruma/enc/unicode.c, and ext/mbstring/oniguruma/src/utf32_be.c when a multibyte regular expression pattern contains invalid multibyte sequences. Ubuntu-Description: Notes: Bugs: https://bugs.php.net/bug.php?id=77370 https://bugs.php.net/bug.php?id=77371 https://bugs.php.net/bug.php?id=77381 https://bugs.php.net/bug.php?id=77382 https://bugs.php.net/bug.php?id=77385 https://bugs.php.net/bug.php?id=77394 https://bugs.php.net/bug.php?id=77418 Priority: medium Discovered-by: Assigned-to: CVSS: nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL] Patches_php5: upstream_php5: needs-triage precise/esm_php5: released (5.3.10-1ubuntu3.33) trusty_php5: released (5.5.9+dfsg-1ubuntu4.27) trusty/esm_php5: released (5.5.9+dfsg-1ubuntu4.27) xenial_php5: DNE bionic_php5: DNE cosmic_php5: DNE devel_php5: DNE Patches_php7.0: upstream: https://github.com/php/php-src/commit/20407d06ca3cb5eeb10f876a812b40c381574bcc (7.1) upstream: https://github.com/php/php-src/commit/28362ed4fae6969b5a8878591a5a06eadf114e03 (7.1) upstream: https://github.com/php/php-src/commit/31f59e1f3074ab344b473dde6077a6844ca87264 (7.1) upstream: https://github.com/php/php-src/commit/9d6c59eeea88a3e9d7039cb4fed5126ef704593a (7.1) upstream_php7.0: needs-triage precise/esm_php7.0: DNE trusty_php7.0: DNE trusty/esm_php7.0: DNE xenial_php7.0: released (7.0.33-0ubuntu0.16.04.2) esm-infra/xenial_php7.0: released (7.0.33-0ubuntu0.16.04.2) bionic_php7.0: DNE cosmic_php7.0: DNE devel_php7.0: DNE Patches_php7.2: upstream_php7.2: released (7.2.14) precise/esm_php7.2: DNE trusty_php7.2: DNE trusty/esm_php7.2: DNE xenial_php7.2: DNE bionic_php7.2: released (7.2.15-0ubuntu0.18.04.1) cosmic_php7.2: released (7.2.15-0ubuntu0.18.10.1) devel_php7.2: released (7.2.15-0ubuntu2) Patches_php7.3: upstream_php7.3: released (7.3.1) precise/esm_php7.3: DNE trusty_php7.3: DNE trusty/esm_php7.3: DNE xenial_php7.3: DNE bionic_php7.3: DNE cosmic_php7.3: DNE devel_php7.3: not-affected (7.3.2-3)