Bugzilla – Bug 931418
VUL-1: CVE-2015-3307: php5, php53: Heap metadata corruption when parsing tar file in phar_tar_process_metadata()
Last modified: 2016-08-09 08:22:53 UTC
CVE-2015-3307 Priority: Low Description: [Heap metadata corruption when parsing tar file in phar_tar_process_metadata()] Notes: sbeattie> fixed in 5.4.40, 5.5.24, 5.6.8 Upstream fix: http://git.php.net/?p=php-src.git;a=commit;h=17cbd0b5b78a7500f185b3781a2149881bfff8ae References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3307 http://people.canonical.com/~ubuntu-security/cve/2015/CVE-2015-3307.html
Petr, please check if this is the same as or related to CVE-2015-2783/bnc#928511.
bugbot adjusting priority
The correct php bug seems to be #69443.
Upstream and reporter of the php bug #69443 confirms that it was fixed in commit for CVE-2015-2783 (bnc#928511). --------------------------------- Yes, it was inadvertently resolved in 5.6.8 when fixing #69324 This is the commit that fixes it: http://git.php.net/?p=php-src.git;a=commit;h=17cbd0b5b78a7500f185b3781a2149881bfff8ae The vulnerable line that was removed was on phar.c:611 PHAR_GET_32(*buffer, buf_len); ----------------------------------