CVE-2016-9936 log

Severity High
Remote Yes
Type Arbitrary code execution
The unserialize implementation in ext/standard/var.c in PHP 7.x before 7.0.14 allows remote attackers to cause a denial of service (use-after-free) or possibly execute arbitrary code via crafted serialized data.
Group Package Affected Fixed Severity Status Ticket
AVG-105 php 7.0.13-1 7.1.1-0 High Fixed
Date Advisory Group Package Severity Type
19 Jan 2017 ASA-201701-28 AVG-105 php High multiple issues