2 matches found
USN-3045-1 php5, php7.0 vulnerabilities
It was discovered that PHP incorrectly handled certain SplMinHeap::compare operations. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 12.04 LTS and Ubuntu 14.04 LTS. CVE-2015-4116 ...
The vulnerability of the PHP interpreter allows attackers to execute arbitrary code.
The vulnerability of the splptrheapinsert function ext/spl/splheap.c in the PHP interpreter is related to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code by invoking the faulty operation of SplMinHeap::compare...