Cloud Foundry Logo
blog single gear
Blog
Security Advisory

CVE-2013-7456 and CVE-2016-5093 PHP vulnerabilities

by: June 8, 2016

CVE-2013-7456 and CVE-2016-5093 PHP vulnerabilities

Severity

Low

Vendor

PHP

Versions Affected

  • Cloud Foundry PHP buildpack versions prior to 4.3.14

Description

Several out-of-bounds reads were discovered in PHP and its dependencies that could cause memory leaks or other unexpected conditions.

Mitigation

Users of affected versions should apply the following mitigation:

  • Upgrade the PHP Buildpack to v4.3.14 or later and restage all applications that use automated buildpack detection

References

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES

You Might Also Like

USN-4041-2: Linux kernel (HWE) update
Security Advisory

USN-4041-2: Linux kernel (HWE) update

by Cloud Foundry Foundation Security Team August 29, 2019
USN-4360-4: json-c vulnerability
Security Advisory

USN-4360-4: json-c vulnerability

by Cloud Foundry Foundation Security Team June 24, 2020
USN-6541-1: GNU C Library vulnerabilities
Security Advisory

USN-6541-1: GNU C Library vulnerabilities

by Cloud Foundry Foundation Security Team April 4, 2024
This website uses cookies to offer you a better browsing experience. Find out more about how we use cookies and how you can change your settings. Accept