Bug 1827653 (CVE-2020-7067)

Summary: CVE-2020-7067 php: out-of-bounds read when using a malformed url-encoded string
Product: [Other] Security Response Reporter: Guilherme de Almeida Suckevicz <gsuckevi>
Component: vulnerabilityAssignee: Red Hat Product Security <security-response-team>
Status: CLOSED NOTABUG QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: unspecifiedCC: fedora, hhorak, jlyle, jorton, rcollet, tcrider, webstack-team, yozone
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: If docs needed, set a value
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2020-04-30 17:13:00 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 1827655    

Description Guilherme de Almeida Suckevicz 2020-04-24 12:59:58 UTC 
If  ``CHARSET_EBCDIC`` is defined (usually, on systems with EBCDIC encoding support), an Out-of-Bounds read can occur using a malformed url-encoded string.

References:
https://www.php.net/ChangeLog-7.php
https://bugs.php.net/bug.php?id=79465
Comment 1 Marco Benatto 2020-04-30 17:13:03 UTC 
Statement:

This affects php running only on platforms using EBCDIC encoding, as versions of Red Hat Enteprise Linux uses ASCII encoding all php versions shipped with it are not vulnerable to this flaw.