CVE-2015-4147

Publication date 9 June 2015

Last updated 24 July 2024

Ubuntu priority

The SoapClient::__call method in ext/soap/soap.c in PHP before 5.4.39, 5.5.x before 5.5.23, and 5.6.x before 5.6.7 does not verify that __default_headers is an array, which allows remote attackers to execute arbitrary code by providing crafted serialized data with an unexpected data type, related to a "type confusion" issue.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
php5	15.04 vivid	Fixed 5.6.4+dfsg-4ubuntu6.2
	14.10 utopic	Fixed 5.5.12+dfsg-2ubuntu4.6
	14.04 LTS trusty	Fixed 5.5.9+dfsg-1ubuntu4.11
	12.04 LTS precise	Fixed 5.3.10-1ubuntu3.19

How can I get the fixes?
What do statuses mean?
Patch details

Notes

mdeslaur

regression fixed in 5.4.40,5.5.24,5.6.8

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package	Patch details
php5	Upstream: http://git.php.net/?p=php-src.git;a=commit;h=d5248f67b58ac3107fec82c5b937fc3f4c89784a Upstream: http://git.php.net/?p=php-src.git;a=commit;h=0c136a2abd49298b66acb0cad504f0f972f5bfe8 Upstream: http://git.php.net/?p=php-src.git;a=commit;h=c8eaca013a3922e8383def6158ece2b63f6ec483 Upstream: http://git.php.net/?p=php-src.git;a=commit;h=75f40ae1f3a7ca837d230f099627d121f9b3a32f Upstream: http://git.php.net/?p=php-src.git;a=commit;h=ff70b40dc978f3f4c457f72a71bb43fd17ee360b

Package

Patch details

php5

Upstream: http://git.php.net/?p=php-src.git;a=commit;h=d5248f67b58ac3107fec82c5b937fc3f4c89784a
Upstream: http://git.php.net/?p=php-src.git;a=commit;h=0c136a2abd49298b66acb0cad504f0f972f5bfe8
Upstream: http://git.php.net/?p=php-src.git;a=commit;h=c8eaca013a3922e8383def6158ece2b63f6ec483
Upstream: http://git.php.net/?p=php-src.git;a=commit;h=75f40ae1f3a7ca837d230f099627d121f9b3a32f
Upstream: http://git.php.net/?p=php-src.git;a=commit;h=ff70b40dc978f3f4c457f72a71bb43fd17ee360b

References

MITRE
NVD
Launchpad
Debian

Related Ubuntu Security Notices (USN)

USN-2658-1
PHP vulnerabilities
6 July 2015

Other references

http://www.openwall.com/lists/oss-security/2015/03/20/14
https://www.cve.org/CVERecord?id=CVE-2015-4147