VDB

GCVE-110-MAGEIA-2015-276

GCVE-110-MAGEIA-2015-276
Advisory Published
Vulnetix · Advisory published July 23, 2015
Segfault in Phar::convertToData on invalid file (CVE-2015-5589). Buffer overflow and stack smashing error in phar_fix_filepath (CVE-2015-5590). The php package has been updated to version 5.5.27, which fixes these issues, as well as other possible bugs and security issues, including the BACKRONYM flaw, which allows php-mysqlnd client connections that were supposed to use SSL/TLS to be downgraded to not use it.

Affected Products

VendorProductVersionsPlatforms
Mageiaphp0 (affected), 5.5.27-1.mga4 (unaffected)
Mageiaphp-apc3.1.15-4.17.mga4 (unaffected), 0 (affected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›