http://bugzilla.opensuse.org/show_bug.cgi?id=1015189 Bug ID: 1015189 Summary: VUL-0: CVE-2016-9935: php: Invalid read when wddx decodes empty boolean element Classification: openSUSE Product: openSUSE Distribution Version: Leap 42.2 Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mikhail.kasimov@gmail.com QA Contact: qa-bugs@suse.de Found By: --- Blocker: --- Reference: http://seclists.org/oss-sec/2016/q4/658 =================================================== Fixed in PHP 5.6.29 and 7.0.14: Bug #73631 Invalid read when wddx decodes empty boolean element https://bugs.php.net/bug.php?id=73631 https://github.com/php/php-src/commit/66fd44209d5ffcb9b3d1bc1b9fd8e35b485040... Use CVE-2016-9935. =================================================== -- You are receiving this mail because: You are on the CC list for the bug.