CVE-2015-9253 log
| Source |
|
| Severity | Medium |
| Remote | No |
| Type | Denial of service |
| Description | An issue was discovered in PHP through 7.2.2. The php-fpm master process restarts a child process in an endless loop when using program execution functions (e.g., passthru, exec, shell_exec, or system) with a non-blocking STDIN stream, causing this master process to consume 100% of the CPU, and consume disk space with a large volume of error logs, as demonstrated by an attack by a customer of a shared-hosting facility. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-623 | php71-fpm | 7.1.14-1 | Medium | Unknown | FS#57579 | |
| AVG-622 | php-fpm | 7.2.7-2 | 7.2.8-1 | Medium | Fixed | FS#57579 |
| References |
|---|
https://bugs.php.net/bug.php?id=75968 https://bugs.php.net/bug.php?id=70185 https://bugs.php.net/bug.php?id=73342 |
| Notes |
|---|
7.2.3 has been released without a fix for this issue. |