SecuritySpace - CVE-2015-6832

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-6832

Description: Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/spl_array.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field.

Test IDs: 1.3.6.1.4.1.25623.1.1.1.2.2015.341

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-6832
Debian Security Information: DSA-3344 (Google Search)
http://www.debian.org/security/2015/dsa-3344
https://security.gentoo.org/glsa/201606-10

CVE ID:	CVE-2015-6832
Description:	Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/spl_array.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field.
Test IDs:	1.3.6.1.4.1.25623.1.1.1.2.2015.341
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6832 Debian Security Information: DSA-3344 (Google Search) http://www.debian.org/security/2015/dsa-3344 https://security.gentoo.org/glsa/201606-10