PHP Multiple Remote Code Execution Vulnerabilities (CVE-2015-6834)

PHP Multiple Remote Code Execution Vulnerabilities (CVE-2015-6834)
PHP Multiple Remote Code Execution Vulnerabilities (CVE-2015-6834)

Release date:
Updated on:

Affected Systems:

PHP PHP

Unaffected system:

PHP PHP 5.x

Description:

Bugtraq id: 76649
CVE (CAN) ID: CVE-2015-6834

PHP is a widely used scripting language. It is especially suitable for Web development and can be embedded into HTML.

PHP re-exploits the unserialize () function after release. Attackers can exploit this vulnerability to execute arbitrary code.

<* Source: taoguangchen
*>

Suggestion:

Vendor patch:

PHP
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:


Http://git.php.net /? P = php-src.git; a = commit; h = e8429400d40e3c3aa4b22ba701991d698a2f3b2f

Http://git.php.net /? P = php-src.git; a = commit; h = 259057b2a484747a6c73ce54c4fa0f5acbd56179

Http://git.php.net /? P = php-src.git; a = commit; h = f06a069c462d37c2e009f6d1d93b8c8e7b713393

PHP 7 innovation and Performance Optimization

PHP 7, you deserve it

Experience PHP 7.0 on CentOS 7.x/Fedora 21

Install LNMP in CentOS 6.3 (PHP 5.4, MyySQL5.6)

Nginx startup failure occurs during LNMP deployment.

Ubuntu install Nginx php5-fpm MySQL (LNMP environment setup)

Detailed php hd scanning PDF + CD source code + full set of teaching videos

Configure the php lnmp development environment in CentOS 6

PHP details: click here
PHP: click here

This article permanently updates the link address: