Description
Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, might allow context-dependent attackers to cause a denial of service (application crash) via a small numerical value in the argument.
Remediation
References
Related Vulnerabilities
PHP NULL Pointer Dereference Vulnerability (CVE-2018-14884)
Oracle Database Server CVE-2012-3220 Vulnerability (CVE-2012-3220)
Jenkins Improper Handling of Inconsistent Structural Elements Vulnerability (CVE-2021-21640)
Plone CMS Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-4191)