logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2021-21708

Description

In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTER_VALIDATE_FLOAT filter and min/max limits, if the filter fails, there is a possibility to trigger use of allocated memory after free, which can result it crashes, and potentially in overwrite of other memory chunks and RCE. This issue affects: code that uses FILTER_VALIDATE_FLOAT with min/max limits. #### Bugs * <https://bugs.php.net/bug.php?id=81708> * <https://bugs.launchpad.net/ubuntu/+source/php7.4/+bug/1961820> #### Notes Author| Note ---|--- [sbeattie](<https://launchpad.net/~sbeattie>) | PEAR issues should go against php-pear as of xenial [rodrigo-zaiden](<https://launchpad.net/~rodrigo-zaiden>) | the issue was introduced in PHP 7.4, seems like it was in commit https://github.com/php/php-src/commit/07df6594


Affected Package


OS OS Version Package Name Package Version
ubuntu 20.04 php7.4 7.4.3-4ubuntu2.9
ubuntu upstream php7.4 7.4.28
ubuntu 21.10 php8.0 8.0.8-1ubuntu0.2
ubuntu upstream php8.0 any
ubuntu 22.04 php8.1 8.1.2-1ubuntu1
ubuntu upstream php8.1 8.1.3

Related