Vulnerability Description
ext/intl/msgformat/msgformat_format.c in PHP before 5.6.26 and 7.x before 7.0.11 does not properly restrict the locale length provided to the Locale class in the ICU library, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a MessageFormatter::formatMessage call with a long first argument.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Php | Php | <= 5.6.25 |
Related Weaknesses (CWE)
References
- http://www.openwall.com/lists/oss-security/2016/09/15/10Mailing List
- http://www.php.net/ChangeLog-5.phpRelease Notes
- http://www.php.net/ChangeLog-7.phpRelease Notes
- http://www.securityfocus.com/bid/93008
- http://www.securitytracker.com/id/1036836
- https://access.redhat.com/errata/RHSA-2018:1296
- https://bugs.php.net/bug.php?id=73007ExploitIssue Tracking
- https://github.com/php/php-src/commit/6d55ba265637d6adf0ba7e9c9ef11187d1ec2f5b?wIssue TrackingPatch
- https://security.gentoo.org/glsa/201611-22
- https://www.tenable.com/security/tns-2016-19
- http://www.openwall.com/lists/oss-security/2016/09/15/10Mailing List
- http://www.php.net/ChangeLog-5.phpRelease Notes
- http://www.php.net/ChangeLog-7.phpRelease Notes
- http://www.securityfocus.com/bid/93008
- http://www.securitytracker.com/id/1036836
FAQ
What is CVE-2016-7416?
CVE-2016-7416 is a vulnerability with a CVSS score of 7.5 (HIGH). ext/intl/msgformat/msgformat_format.c in PHP before 5.6.26 and 7.x before 7.0.11 does not properly restrict the locale length provided to the Locale class in the ICU library, which allows remote attac...
How severe is CVE-2016-7416?
CVE-2016-7416 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-7416?
Check the references section above for vendor advisories and patch information. Affected products include: Php Php.