CVE-2016-5770
EUVD-2016-670507.08.2016, 10:59
Integer overflow in the SplFileObject::fread function in spl_directory.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large integer argument, a related issue to CVE-2016-5096.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| php | php | 𝑥 < 5.5.37 |
| php | php | 5.6.0 ≤ 𝑥 < 5.6.23 |
| php | php | 7.0.0 ≤ 𝑥 < 7.0.8 |
| opensuse | leap | 42.1 |
| opensuse | opensuse | 13.2 |
| debian | debian_linux | 8.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
References