2 matches found
CVE-2018-15503
The unpack implementation in Swoole version 4.0.4 lacks correct size checks in the deserialization process. An attacker can craft a serialized object to exploit this vulnerability and cause a SEGV...
CVE-2018-15503
CVE-2018-15503 affects Swoole 4.0.4, where the unpack/deserialization path has insufficient size checks. An attacker can craft a serialized object to trigger a segmentation fault (SEGV) in the vulnerable unpack implementation. The available connected documents corroborate that the vulnerability a...