It was discovered that PHP incorrectly handled long string inputs in two database drivers. An attacker could possibly use this issue to write files in locations they would not normally have access to. (CVE-2024-11236)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "libapache2-mod-php7.0" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "libphp7.0-embed" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-bcmath" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-bz2" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-cgi" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-cli" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-common" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-curl" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-dba" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-dev" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-enchant" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-fpm" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-gd" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-gmp" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-imap" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-interbase" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-intl" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-json" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-ldap" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-mbstring" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-mcrypt" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-mysql" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-odbc" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-opcache" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-pgsql" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-phpdbg" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-pspell" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-readline" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-recode" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-snmp" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-soap" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-sqlite3" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-sybase" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-tidy" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-xml" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-xmlrpc" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-xsl" }, { "binary_version": "7.0.33-0ubuntu0.16.04.16+esm13", "binary_name": "php7.0-zip" } ] }
{ "ecosystem": "Ubuntu:Pro:16.04:LTS", "cves": [ { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2024-11236" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "libapache2-mod-php7.2" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "libphp7.2-embed" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-bcmath" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-bz2" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-cgi" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-cli" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-common" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-curl" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-dba" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-dev" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-enchant" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-fpm" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-gd" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-gmp" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-imap" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-interbase" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-intl" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-json" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-ldap" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-mbstring" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-mysql" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-odbc" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-opcache" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-pgsql" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-phpdbg" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-pspell" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-readline" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-recode" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-snmp" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-soap" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-sqlite3" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-sybase" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-tidy" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-xml" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-xmlrpc" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-xsl" }, { "binary_version": "7.2.24-0ubuntu0.18.04.17+esm7", "binary_name": "php7.2-zip" } ] }
{ "ecosystem": "Ubuntu:Pro:18.04:LTS", "cves": [ { "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" }, { "type": "Ubuntu", "score": "medium" } ], "id": "CVE-2024-11236" } ] }