Vulnerability Change Records for CVE-2015-4643

Change History

CPE Deprecation Remap 4/22/2019 1:48:01 PM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux:6:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

Initial CVE Analysis 5/16/2016 4:5:12 PM

Action Type Old Value New Value

CVE Modified by Source 10/11/2016 10:0:54 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

CVE Modified by Source 6/16/2016 10:3:45 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-1135.html

CVE Modified by Red Hat, Inc. 11/03/2017 9:29:05 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.debian.org/security/2015/dsa-3344 [No Types Assigned]

CPE Deprecation Remap 12/27/2019 11:8:55 AM

Action Type Old Value New Value
Changed CPE Configuration
OR
     *cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:oracle:linux:6:*:*:*:*:*:*:*

CVE Modified by Source 6/02/2016 9:59:51 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securityfocus.com/bid/75291

Modified Analysis 5/17/2016 10:52:46 AM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
Configuration 1
     OR
          *cpe:2.3:a:php:php:5.5.25:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.24:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.23:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.4.41:*:*:*:*:*:*:* (and previous)
Added CVSS V2

								
							
							
						
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Added CVSS V3

								
							
							
						
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Added CWE

								
							
							
						
CWE-119
Changed Reference Type
http://php.net/ChangeLog-5.php No Types Assigned
http://php.net/ChangeLog-5.php Advisory
Changed Reference Type
https://bugs.php.net/bug.php?id=69545 No Types Assigned
https://bugs.php.net/bug.php?id=69545 Advisory, Exploit

CVE Modified by Source 6/14/2016 9:59:53 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-1187.html

Modified Analysis 5/23/2016 12:32:01 PM

Action Type Old Value New Value
Changed Reference Type
http://php.net/ChangeLog-5.php Advisory
http://php.net/ChangeLog-5.php No Types Assigned
Changed Reference Type
https://bugs.php.net/bug.php?id=69545 Advisory, Exploit
https://bugs.php.net/bug.php?id=69545 Exploit

CVE Modified by Red Hat, Inc. 1/04/2018 9:30:09 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-1218.html [No Types Assigned]

Modified Analysis 5/10/2019 12:42:49 PM

Action Type Old Value New Value
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:oracle:linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:oracle:linux:7:0:*:*:*:*:*:*
Added CPE Configuration

								
							
							
						
OR
     *cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.3:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.4:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_aus:7.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:6.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.3:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.4:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.5:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_tus:7.3:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_tus:7.6:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
Changed CPE Configuration
OR
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions up to (including) 5.4.41
     *cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.23:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.24:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.5.25:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.0:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
     *cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
OR
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions up to (excluding) 5.4.42
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions from (including) 5.5.0 up to (excluding) 5.5.26
     *cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions from (including) 5.6.0 up to (excluding) 5.6.10
Changed CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
OR
     *cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*
Removed CPE Configuration
OR
     *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*
     *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

								
						
Changed Reference Type
http://git.php.net/?p=php-src.git;a=commit;h=0765623d6991b62ffcd93ddb6be8a5203a2fa7e2 No Types Assigned
http://git.php.net/?p=php-src.git;a=commit;h=0765623d6991b62ffcd93ddb6be8a5203a2fa7e2 Patch, Third Party Advisory
Changed Reference Type
http://openwall.com/lists/oss-security/2015/06/18/6 No Types Assigned
http://openwall.com/lists/oss-security/2015/06/18/6 Mailing List, Patch, Third Party Advisory
Changed Reference Type
http://php.net/ChangeLog-5.php No Types Assigned
http://php.net/ChangeLog-5.php Release Notes, Vendor Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-1135.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-1135.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-1186.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-1186.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-1187.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-1187.html Third Party Advisory
Changed Reference Type
http://rhn.redhat.com/errata/RHSA-2015-1218.html No Types Assigned
http://rhn.redhat.com/errata/RHSA-2015-1218.html Third Party Advisory
Changed Reference Type
http://www.debian.org/security/2015/dsa-3344 No Types Assigned
http://www.debian.org/security/2015/dsa-3344 Third Party Advisory
Changed Reference Type
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html No Types Assigned
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html Third Party Advisory
Changed Reference Type
http://www.securityfocus.com/bid/75291 No Types Assigned
http://www.securityfocus.com/bid/75291 Third Party Advisory, VDB Entry
Changed Reference Type
http://www.securitytracker.com/id/1032709 No Types Assigned
http://www.securitytracker.com/id/1032709 Third Party Advisory, VDB Entry
Changed Reference Type
https://bugs.php.net/bug.php?id=69545 Exploit
https://bugs.php.net/bug.php?id=69545 Exploit, Issue Tracking, Vendor Advisory
Changed Reference Type
https://security.gentoo.org/glsa/201606-10 No Types Assigned
https://security.gentoo.org/glsa/201606-10 Third Party Advisory

CVE Modified by Red Hat, Inc. 9/21/2017 9:29:18 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://www.securitytracker.com/id/1032709 [No Types Assigned]

CVE Modified by Red Hat, Inc. 11/29/2016 10:1:47 PM

Action Type Old Value New Value
Added Reference

								
							
							
						
http://rhn.redhat.com/errata/RHSA-2015-1186.html [No Types Assigned]
Added Reference

								
							
							
						
https://security.gentoo.org/glsa/201606-10 [No Types Assigned]

Modified Analysis 6/22/2016 8:0:25 PM

Action Type Old Value New Value
Changed CPE Configuration
Configuration 1
     OR
          *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:6:*:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:a:php:php:5.5.25:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.24:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.23:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.4.41:*:*:*:*:*:*:* (and previous)
Configuration 1
     OR
          *cpe:2.3:o:redhat:enterprise_linux_server_eus:7.1:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node_eus:7.1:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_hpc_node:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*
Configuration 2
     OR
          *cpe:2.3:a:php:php:5.5.25:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.24:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.6.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.23:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.22:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.21:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.20:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.19:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.18:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.17:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.16:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.15:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.14:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.13:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.12:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.11:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.10:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.9:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.8:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.7:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.6:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.5:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.4:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.3:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.2:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.1:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
          *cpe:2.3:a:php:php:5.4.41:*:*:*:*:*:*:* (and previous)
Configuration 3
     OR
          *cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
          *cpe:2.3:o:redhat:enterprise_linux:6:*:*:*:*:*:*:*