Description
Use-after-free vulnerability in the SPL unserialize implementation in ext/spl/spl_array.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allows remote attackers to execute arbitrary code via crafted serialized data that triggers misuse of an array field.
References (4)
Core 4
Core References
Third Party Advisory vendor-advisory
x_refsource_debian
http://www.debian.org/security/2015/dsa-3344
Vendor Advisory x_refsource_confirm
http://www.php.net/ChangeLog-5.php
Various Sources x_refsource_confirm
https://bugs.php.net/bug.php?id=70068
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/201606-10
Scores
CVSS v3
7.3
EPSS
0.0154
EPSS Percentile
81.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Details
Status
published
Products (30)
php/php
5.5.0 (13 CPE variants)
php/php
5.5.1
php/php
5.5.2
php/php
5.5.3
php/php
5.5.4
php/php
5.5.5
php/php
5.5.6
php/php
5.5.7
php/php
5.5.8
php/php
5.5.9
... and 20 more
Published
Jan 19, 2016
Tracked Since
Feb 18, 2026