CVE-2012-6113
This CVE affects PHP 5.3.9–5.3.13 where the openssl_encrypt() code path in ext/openssl/openssl.c fails to initialize a variable, enabling a remote attacker to read sensitive memory contents by supplying zero-length input data. The issue is a memory disclosure vulnerability. Public references indi...