CVE-2015-4147
Published: 9 June 2015
The SoapClient::__call method in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that __default_headers is an array, which allows remote attackers to execute arbitrary code by providing crafted serialized data with an unexpected data type, related to a "type confusion" issue.
Notes
| Author | Note |
|---|---|
| mdeslaur | regression fixed in 5.4.40,5.5.24,5.6.8 |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
php5 Launchpad, Ubuntu, Debian |
precise |
Released
(5.3.10-1ubuntu3.19)
|
| trusty |
Released
(5.5.9+dfsg-1ubuntu4.11)
|
|
| upstream |
Released
(5.4.39,5.5.23,5.6.7)
|
|
| utopic |
Released
(5.5.12+dfsg-2ubuntu4.6)
|
|
| vivid |
Released
(5.6.4+dfsg-4ubuntu6.2)
|
|
|
Patches: upstream: http://git.php.net/?p=php-src.git;a=commit;h=d5248f67b58ac3107fec82c5b937fc3f4c89784a upstream: http://git.php.net/?p=php-src.git;a=commit;h=0c136a2abd49298b66acb0cad504f0f972f5bfe8 upstream: http://git.php.net/?p=php-src.git;a=commit;h=c8eaca013a3922e8383def6158ece2b63f6ec483 upstream: http://git.php.net/?p=php-src.git;a=commit;h=75f40ae1f3a7ca837d230f099627d121f9b3a32f upstream: http://git.php.net/?p=php-src.git;a=commit;h=ff70b40dc978f3f4c457f72a71bb43fd17ee360b |
||