MGASA-2015-0090

Advisory lineage Upstream: 3 Downstream: 0

Upstream

CVE-2015-0273 CVE-2015-1351 CVE-2015-1352

Published: 03 Mar 2015, 21:16

Last modified:16 Apr 2026, 06:25

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

03 Mar 2015, 21:16

Published

Vulnerability first disclosed

16 Apr 2026, 06:25

Last Modified

Vulnerability information updated

Description

Updated php packages fix security vulnerabilities Updated php packages fix security vulnerabilities: It was discovered that the PHP opcache component incorrectly handled memory. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1351). It was discovered that the PHP PostgreSQL database extension incorrectly handled certain pointers. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1352). Use after free vulnerability in unserialize() with DateTimeZone in PHP before 5.5.22 (CVE-2015-0273). PHP has been updated to version 5.5.22, which fixes these issues and other bugs.

Affected Systems

mageia•php
< 5.5.22-1.2.mga4
mageia•php-apc
< 3.1.15-4.12.mga4

MGASA-2015-0090

Vulnerability Summary

Timeline

Description

Affected Systems

References (4)