php: Use After Free Vulnerability in PHP's GC algorithm and unserialize

splarray.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash via crafted...

PHP 'gdImageAALine()' Integer Overflow Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. An...

PHP 'zend_symtable_clean()' function out-of-bounds read denial of service vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. PHP...

PHP Denial of Service Vulnerability (CNVD-2016-07712)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...

PHP SPL Extended Integer Overflow Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community.SPL Standard PHP Library is a collection of interfaces and class extensions for solving typical problems. SPL Standard PHP Library is an extensio...

PHP Gettext Remote Code Execution Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and program extensions in C, C++, etc. Gettext is one of the...

PHP Remote Code Execution Vulnerability (CNVD-2016-05253)

PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A remote code execution vulnerability exists in versions of PHP prior to 5.5.36. An attacker could exploit this...

PHP suffers from httpoxy remote proxy infection vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. httpoxy is a set of vulnerabilities that affect application code running in a CGI environment. The vulnerabilities exist primarily in multiple w...

PHP 'wddx_deserialize' function double release vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A double-release vulnerability exists in PHP's wddxdeserialize function, which can be exploited by a remote attacker to execute arbitrary code...

PHP '_php_mb_regex_ereg_replace_exec' function double release vulnerability

PHP PHP: Hypertext Preprocessor, PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. A double-release vulnerability exists in PHP's phpmbregexeregreplaceexec function, which can be exploited by an...

UBUNTU-CVE-2016-5771

splarray.c in the SPL extension in PHP before 5.5.37 and 5.6.x before 5.6.23 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service use-after-free and application crash via crafted...

The vulnerability of the PHP interpreter allows attackers to cause errors in the application’s operation.

The vulnerability of the PHP format printer component is related to the repeated release of memory. Exploiting this vulnerability can allow a remote attacker to cause an error in the application’s operation...

The vulnerability of the PHP interpreter, which allows a hacker to trigger a service failure

The vulnerability in the main/phpopentemporaryfile.c function of the PHP interpreter arises due to synchronization errors when using a shared resource. Exploiting this vulnerability can allow an attacker, operating remotely, to cause service interruptions such as outages and memory corruption...

Vulnerability of the PHP interpreter and the Mac OS X operating system, allowing attackers to execute arbitrary code

The vulnerability of the phpsnmperror function ext/snmp/snmp.c in the PHP interpreter and the Mac OS X operating system exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the PHP interpreter allows attackers to execute arbitrary code.

The vulnerability of the splptrheapinsert function ext/spl/splheap.c in the PHP interpreter is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by invoking the faulty operation of SplMinHeap::compare...

The vulnerability of the PHP interpreter allows attackers to trigger a service failure or execute arbitrary code.

The vulnerability of the mget function in the Fileinfo component of the PHP interpreter exists due to insufficient validation of input data. Exploiting this vulnerability could allow an attacker to cause a service failure application termination or execute arbitrary code using a specially created...

PHP Double Release Vulnerability

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...

UBUNTU-CVE-2015-8873

Stack consumption vulnerability in Zend/zendexceptions.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to cause a denial of service segmentation fault via recursive method calls...

PHP integer overflow vulnerability (CNVD-2016-02715)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. An integer overflow vulnerability exists in PHP, which can be exploited by remote attackers to cause a denial of service crash...

The vulnerability of the PHP interpreter, which allows attackers to trigger a service failure or exert other effects.

The vulnerability of the wddx.c function in the PHP WDDX interpreter is related to the use of memory after it is freed. Exploiting this vulnerability can allow a remote attacker to cause service failure or potentially other effects, such as memory corruption or the termination of the application,...