Description
An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. ext/ldap/ldap.c allows remote LDAP servers to cause a denial of service (NULL pointer dereference and application crash) because of mishandling of the ldap_get_dn return value.
Remediation
References
Related Vulnerabilities
Drupal Core 8.7.x Cross-Site Scripting (8.7.0 - 8.7.11)
Apache 2.x version older than 2.2.3
Dolibarr Missing Authorization Vulnerability (CVE-2018-10092)
WordPress Plugin Yandex Money button Cross-Site Scripting (2.3.3)
WordPress Plugin iThemes Security (formerly Better WP Security) Unspecified Vulnerability (6.9.0)