Homepage

php5 vulnerabilities

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the php5 package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free
VulnerabilityVulnerable Version
  • M
Out-of-Bounds

*
  • M
XML External Entity (XXE) Injection

*
  • M
Use of Insufficiently Random Values

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • M
Resource Exhaustion

*
  • M
CVE-2022-31631

*
  • M
CVE-2022-31629

*
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

*
  • M
Release of Invalid Pointer or Reference

*
  • M
Buffer Overflow

*
  • L
CVE-2021-21707

*
  • H
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.29+esm15
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.29+esm14
  • L
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.29+esm14
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29+esm14
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.29+esm14
  • M
Reliance on Cookies without Validation and Integrity Checking

<5.5.9+dfsg-1ubuntu4.29+esm13
  • M
Inadequate Encryption Strength

<5.5.9+dfsg-1ubuntu4.29+esm13
  • L
Use After Free

<5.5.9+dfsg-1ubuntu4.29+esm14
  • M
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.29+esm12
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm11
  • M
CVE-2020-7066

<5.5.9+dfsg-1ubuntu4.29+esm11
  • L
Improper Preservation of Permissions

<5.5.9+dfsg-1ubuntu4.29+esm11
  • L
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.29+esm11
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm10
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm10
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm8
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm8
  • L
Arbitrary Code Injection

<5.5.9+dfsg-1ubuntu4.29+esm8
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm8
  • M
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.29+esm6
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm5
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm5
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.29+esm4
  • L
Improper Input Validation

*
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm3
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm3
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm2
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm1
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm1
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29
  • L
Access Restriction Bypass

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.27
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.27
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.27
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.27
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.29+esm2
  • M
Cross-site Scripting (XSS)

<5.5.9+dfsg-1ubuntu4.26
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.26
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.26
  • M
Integer Overflow or Wraparound

*
  • M
Out-of-bounds Read

*
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.25
  • M
Cross-site Scripting (XSS)

<5.5.9+dfsg-1ubuntu4.25
  • M
Information Exposure

<5.5.9+dfsg-1ubuntu4.25
  • M
Loop with Unreachable Exit Condition ('Infinite Loop')

<5.5.9+dfsg-1ubuntu4.25
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.24
  • L
Resource Exhaustion

<5.5.9+dfsg-1ubuntu4.29+esm10
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.24
  • M
Cross-site Scripting (XSS)

<5.5.9+dfsg-1ubuntu4.23
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.23
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.23
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.22
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.22
  • M
Information Exposure

<5.5.9+dfsg-1ubuntu4.22
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.22
  • M
Improper Check for Unusual or Exceptional Conditions

<5.5.9+dfsg-1ubuntu4.22
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.22
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.22
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.22
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.22
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.22
  • M
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.22
  • M
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.22
  • L
Resource Exhaustion

*
  • L
Improper Input Validation

*
  • M
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.19
  • L
Access Restriction Bypass

<5.5.9+dfsg-1ubuntu4.22
  • L
Arbitrary Code Injection

*
  • L
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.21
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.21
  • L
Numeric Errors

<5.5.9+dfsg-1ubuntu4.21
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.21
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.21
  • M
CVE-2016-7478

<5.5.9+dfsg-1ubuntu4.21
  • L
Use After Free

<5.5.9+dfsg-1ubuntu4.21
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.21
  • L
Use After Free

*
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.21
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.21
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.20
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.20
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.20
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.20
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.20
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.20
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.20
  • L
Information Exposure

<5.5.9+dfsg-1ubuntu4.20
  • L
Arbitrary Code Injection

<5.5.9+dfsg-1ubuntu4.20
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.20
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.20
  • L
Deserialization of Untrusted Data

<5.5.9+dfsg-1ubuntu4.20
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.20
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.20
  • M
Out-of-bounds Write

<5.5.9+dfsg-1ubuntu4.20
  • M
Cross-site Scripting (XSS)

<5.5.9+dfsg-1ubuntu4.19
  • L
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.19
  • L
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.19
  • L
Use After Free

<5.5.9+dfsg-1ubuntu4.19
  • L
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.19
  • M
Double Free

<5.5.9+dfsg-1ubuntu4.19
  • L
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.19
  • M
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.19
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.19
  • M
Double Free

<5.5.9+dfsg-1ubuntu4.19
  • L
Use After Free

<5.5.9+dfsg-1ubuntu4.19
  • M
NULL Pointer Dereference

<5.5.9+dfsg-1ubuntu4.19
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.19
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.19
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.19
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.19
  • M
Integer Overflow or Wraparound

<5.5.9+dfsg-1ubuntu4.19
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.19
  • M
Out-of-bounds Read

<5.5.9+dfsg-1ubuntu4.19
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.19
  • M
Improper Access Control

<5.5.9+dfsg-1ubuntu4.19
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.17
  • L
CVE-2016-4541

<5.5.9+dfsg-1ubuntu4.17
  • L
CVE-2016-4540

<5.5.9+dfsg-1ubuntu4.17
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.17
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.17
  • M
CVE-2015-8876

<5.5.9+dfsg-1ubuntu4.19
  • M
CVE-2016-4343

<5.5.9+dfsg-1ubuntu4.17
  • M
CVE-2015-8866

<5.5.9+dfsg-1ubuntu4.16
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.17
  • M
Cryptographic Issues

<5.5.9+dfsg-1ubuntu4.16
  • L
Directory Traversal

<5.5.9+dfsg-1ubuntu4.16
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.17
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.17
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.17
  • M
Numeric Errors

<5.5.9+dfsg-1ubuntu4.16
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.16
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.16
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • L
CVE-2015-6837

<5.5.9+dfsg-1ubuntu4.13
  • M
CVE-2015-4601

<5.5.9+dfsg-1ubuntu4.11
  • M
CVE-2015-4599

<5.5.9+dfsg-1ubuntu4.11
  • M
Information Exposure

<5.5.9+dfsg-1ubuntu4.11
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.19
  • M
CVE-2015-6834

<5.5.9+dfsg-1ubuntu4.13
  • L
CVE-2015-4116

<5.5.9+dfsg-1ubuntu4.19
  • M
Improper Access Control

<5.5.9+dfsg-1ubuntu4.16
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.13
  • L
CVE-2015-4644

<5.5.9+dfsg-1ubuntu4.11
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.11
  • M
CVE-2015-6835

<5.5.9+dfsg-1ubuntu4.13
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.16
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.11
  • M
CVE-2015-8835

<5.5.9+dfsg-1ubuntu4.16
  • M
CVE-2015-4603

<5.5.9+dfsg-1ubuntu4.11
  • M
CVE-2015-4602

<5.5.9+dfsg-1ubuntu4.11
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.11
  • M
CVE-2015-4600

<5.5.9+dfsg-1ubuntu4.11
  • L
CVE-2015-6838

<5.5.9+dfsg-1ubuntu4.13
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • M
CVE-2015-6836

<5.5.9+dfsg-1ubuntu4.13
  • L
Directory Traversal

<5.5.9+dfsg-1ubuntu4.13
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.13
  • M
CVE-2015-6831

<5.5.9+dfsg-1ubuntu4.13
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.16
  • M
CVE-2015-6832

<5.5.9+dfsg-1ubuntu4.13
  • L
Numeric Errors

<5.5.9+dfsg-1ubuntu4.14
  • M
CVE-2015-7803

<5.5.9+dfsg-1ubuntu4.14
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.9
  • L
Numeric Errors

<5.5.9+dfsg-1ubuntu4.11
  • M
Improper Data Handling

<5.5.9+dfsg-1ubuntu4.11
  • L
Improper Data Handling

<5.5.9+dfsg-1ubuntu4.11
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.9
  • L
Improper Data Handling

<5.5.9+dfsg-1ubuntu4.11
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.11
  • M
Resource Management Errors

<5.5.9+dfsg-1ubuntu4.11
  • M
Numeric Errors

<5.5.9+dfsg-1ubuntu4.11
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.9
  • M
Use After Free

<5.5.9+dfsg-1ubuntu4.6
  • M
CVE-2015-1352

<5.5.9+dfsg-1ubuntu4.6
  • L
Numeric Errors

<5.5.9+dfsg-1ubuntu4.9
  • M
CVE-2015-2787

<5.5.9+dfsg-1ubuntu4.9
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.6
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.7
  • L
Access Restriction Bypass

<5.5.9+dfsg-1ubuntu4.9
  • M
CVE-2015-2301

<5.5.9+dfsg-1ubuntu4.7
  • M
CVE-2015-0273

<5.5.9+dfsg-1ubuntu4.7
  • M
CVE-2015-0232

<5.5.9+dfsg-1ubuntu4.6
  • L
CVE-2015-0231

<5.5.9+dfsg-1ubuntu4.6
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.6
  • L
CVE-2014-8142

<5.5.9+dfsg-1ubuntu4.6
  • L
Resource Management Errors

<5.5.9+dfsg-1ubuntu4.7
  • L
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.5
  • M
Numeric Errors

<5.5.9+dfsg-1ubuntu4.5
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.5
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.5
  • L
Link Following

*
  • L
Numeric Errors

<5.5.9+dfsg-1ubuntu4.4
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.4
  • M
CVE-2014-4698

<5.5.9+dfsg-1ubuntu4.3
  • M
CVE-2014-4670

<5.5.9+dfsg-1ubuntu4.3
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.3
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.3
  • M
Improper Input Validation

<5.5.9+dfsg-1ubuntu4.3
  • M
Numeric Errors

<5.5.9+dfsg-1ubuntu4.3
  • M
CVE-2014-3515

<5.5.9+dfsg-1ubuntu4.3
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.3
  • M
Information Exposure

<5.5.9+dfsg-1ubuntu4.3
  • M
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.1
  • L
Resource Management Errors

<5.5.9+dfsg-1ubuntu4.1
  • L
Out-of-Bounds

<5.5.9+dfsg-1ubuntu4.1
  • M
Access Restriction Bypass

<5.5.9+dfsg-1ubuntu4.1