CVE-2015-4644

7.5 HIGH

Published: May 16, 2016 Modified: May 06, 2026

Description

The php_pgsql_meta_data function in pgsql.c in the PostgreSQL (aka pgsql) extension in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 does not validate token extraction for table names, which might allow remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted name. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-1352.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

CVSS v3.x Details

0.0 Low Medium High Critical 10.0

Vector String

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64

Source: secalert@redhat.com

http://openwall.com/lists/oss-security/2015/06/18/6

Source: secalert@redhat.com

http://php.net/ChangeLog-5.php

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2015-1186.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2015-1187.html

Source: secalert@redhat.com

http://www.debian.org/security/2015/dsa-3344

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/75292

Source: secalert@redhat.com

http://www.securitytracker.com/id/1032709

Source: secalert@redhat.com

https://bugs.php.net/bug.php?id=69667

Source: secalert@redhat.com

https://security.gentoo.org/glsa/201606-10

Source: secalert@redhat.com

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=2cc4e69cc6d8dbc4b3568ad3dd583324a7c11d64

Source: af854a3a-2127-422b-91ae-364da2661108

http://openwall.com/lists/oss-security/2015/06/18/6

Source: af854a3a-2127-422b-91ae-364da2661108

http://php.net/ChangeLog-5.php

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2015-1186.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://rhn.redhat.com/errata/RHSA-2015-1187.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.debian.org/security/2015/dsa-3344

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/75292

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1032709

Source: af854a3a-2127-422b-91ae-364da2661108

https://bugs.php.net/bug.php?id=69667

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201606-10

Source: af854a3a-2127-422b-91ae-364da2661108

22 reference(s) from NVD

Quick Stats

CVSS v3 Score

7.5 / 10.0

EPSS (Exploit Probability)

9.9%

93th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

php redhat