Back to bug 1297710
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Adam Mariš | 2016-01-12 09:55:50 UTC | Depends On | 1297711 | |
| Adam Mariš | 2016-01-12 10:38:59 UTC | Blocks | 1297732 | |
| Salvatore Bonaccorso | 2016-01-12 20:40:20 UTC | CC | carnil | |
| Tomas Hoger | 2016-01-22 21:37:34 UTC | Summary | php: Memory leak and out-of-bounds write in fpm_log.c | php: out-of-bounds write in fpm_log.c |
| Whiteboard | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=affected,rhel-5/php53=affected,rhel-6/php=affected,rhel-7/php=affected,rhscl-2/php54-php=affected,rhscl-2/php55-php=affected,rhscl-2/rh-php56-php=affected,openshift-enterprise-2/php=affected,fedora-all/php=affected | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=affected,rhel-7/php=affected,rhscl-2/php54-php=affected,rhscl-2/php55-php=affected,rhscl-2/rh-php56-php=affected,fedora-all/php=affected | ||
| Cedric Buissart | 2016-02-02 13:41:56 UTC | CC | cbuissar | |
| Cedric Buissart | 2016-02-02 14:39:26 UTC | Whiteboard | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=6.4/AV:N/AC:L/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=affected,rhel-7/php=affected,rhscl-2/php54-php=affected,rhscl-2/php55-php=affected,rhscl-2/rh-php56-php=affected,fedora-all/php=affected | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=affected,rhel-7/php=affected,rhscl-2/php54-php=affected,rhscl-2/php55-php=affected,rhscl-2/rh-php56-php=affected,fedora-all/php=affected |
| Cedric Buissart | 2016-02-03 13:05:04 UTC | Whiteboard | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=affected,rhel-7/php=affected,rhscl-2/php54-php=affected,rhscl-2/php55-php=affected,rhscl-2/rh-php56-php=affected,fedora-all/php=affected | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=wontfix,rhel-7/php=wontfix,rhscl-2/php54-php=wontfix,rhscl-2/php55-php=wontfix,rhscl-2/rh-php56-php=wontfix,fedora-all/php=affected |
| Cedric Buissart | 2016-02-03 13:05:20 UTC | Status | NEW | CLOSED |
| Resolution | --- | WONTFIX | ||
| Last Closed | 2016-02-03 08:05:20 UTC | |||
| Cedric Buissart | 2016-02-17 15:08:36 UTC | Doc Text | An out-of-bound write was found in the fpm_log_write() logging function of PHP's FastCGI Process Manager service. Longer that maximum allowance lines could be logged. A remote attacker could repeatedly send maliciously crafted requests to force FPM to exhaust file system space, creating a denial of service and preventing further logging. | |
| Martin Prpič | 2016-03-15 11:30:49 UTC | Doc Text | An out-of-bound write was found in the fpm_log_write() logging function of PHP's FastCGI Process Manager service. Longer that maximum allowance lines could be logged. A remote attacker could repeatedly send maliciously crafted requests to force FPM to exhaust file system space, creating a denial of service and preventing further logging. | An out-of-bounds write flaw was found in the fpm_log_write() logging function of PHP's FastCGI Process Manager service. A remote attacker could repeatedly send maliciously crafted requests to force FPM to exhaust file system space, creating a denial of service and preventing further logging. |
| Adam Mariš | 2016-05-30 07:28:29 UTC | Summary | php: out-of-bounds write in fpm_log.c | CVE-2016-5114 php: out-of-bounds write in fpm_log.c |
| Alias | CVE-2016-5114 | |||
| Tomas Hoger | 2016-11-15 13:45:44 UTC | Resolution | WONTFIX | ERRATA |
| Whiteboard | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=wontfix,rhel-7/php=wontfix,rhscl-2/php54-php=wontfix,rhscl-2/php55-php=wontfix,rhscl-2/rh-php56-php=wontfix,fedora-all/php=affected | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=wontfix,rhel-7/php=wontfix,rhscl-2/php54-php=wontfix,rhscl-2/php55-php=wontfix,rhscl-2/rh-php56-php=affected,fedora-all/php=affected | ||
| Product Security DevOps Team | 2019-09-29 13:41:49 UTC | Whiteboard | impact=moderate,public=20151021,reported=20160107,source=upstream,cvss2=5.8/AV:N/AC:M/Au:N/C:P/I:P/A:N,cwe=CWE-787,rhel-5/php=notaffected,rhel-5/php53=notaffected,rhel-6/php=wontfix,rhel-7/php=wontfix,rhscl-2/php54-php=wontfix,rhscl-2/php55-php=wontfix,rhscl-2/rh-php56-php=affected,fedora-all/php=affected |
Back to bug 1297710