Ãë¾àÁ¡ID |
22848 |
À§Çèµµ |
30 |
Æ÷Æ® |
80, ... |
ÇÁ·ÎÅäÄÝ |
TCP |
ºÐ·ù |
CGI |
»ó¼¼¼³¸í |
ÇØ´ç ½Ã½ºÅÛ¿¡´Â PHP (5.6.x)ÀÇ 5.6.36 ÀÌÀü ¹öÀüÀÌ ¼³Ä¡µÇ¾î ÀÖÀ¸¸ç, ´Ù¼öÀÇ Ãë¾àÁ¡¿¡ ¿µÇâÀ» ¹Þ´Â´Ù.
- ext/iconv/iconv.cÆÄÀÏ¿¡ iconv ½ºÆ®¸² Áß ´ÙÁßÀÇ ½ÃÄö½º¸¦ ¿Ã¹Ù¸£°Ô ÇÊÅ͸µÇÏÁö ¸øÇÏ¿© ¹«ÇÑ·çÇÁ ¹ß»ýÇÏ´Â ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2018-10546)
- ext/phar/phar_object.cÆÄÀÏÀÇ ¿À·ù·Î ÀÎÇØ PHAR 403°ú 404 ¿¡·¯ ÆäÀÌÁö¿¡ Å©·Î½º »çÀÌÆ® ½ºÅ©¸³ÆÃ(XSS) Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2018-10547)
- ext/ldap/ldap.cÆÄÀÏ¿¡ LDAP ¼¹ö°¡ NULL Æ÷ÀÎÅ͸¦ ¿ªÂüÁ¶ÇÏ°Ô ÇÏ¿© ¼ºñ½º °ÅºÎ¸¦ ¹ß»ýÇÒ ¼ö ÀÖ´Â ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2018-10548)
- ext/exif/exif.cÆÄÀÏ¿¡¼ Á¶ÀÛµÈ JPEG ÆÄÀÏÀ» ÀоîµéÀÏ ¶§ ÇÒ´çµÈ ¸Þ¸ð¸® ¹üÀ§¸¦ ¹þ¾î³ª´Â ÁÖ¼Ò¸¦ Á¢±ÙÇÏ´Â ¿À·ù°¡ ¹ß»ýÇÑ´Ù. (CVE-2018-10549)
* Âü°í »çÀÌÆ®: http://php.net/ChangeLog-5.php#5.6.36
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû: PHP 5.6.36 ÀÌÀüÀÇ 5.6.x ¹öÀüµé Any operating system Any version |
ÇØ°áÃ¥ |
PHP À¥»çÀÌÆ® ÀÎ http://www.php.net/downloads.php ¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â PHPÀÇ ÃֽŠ¹öÀü(5.6.36 ÀÌ»ó)À¸·Î ¾÷±×·¹À̵å ÇØ¾ß ÇÑ´Ù. |
°ü·Ã URL |
CVE-2018-10546,CVE-2018-10547,CVE-2018-10548,CVE-2018-10549 (CVE) |
°ü·Ã URL |
104019,104020,104022 (SecurityFocus) |
°ü·Ã URL |
(ISS) |
|