Description
The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow context-dependent attackers to cause a denial of service (NULL pointer dereference) via an empty ZIP archive that is processed with a (1) locateName or (2) statName operation.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2001-1385)
WordPress Plugin YITH WooCommerce Wishlist Unspecified Vulnerability (2.0.6)
Jenkins Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-5320)
WordPress Plugin Import all XML, CSV & TXT into WordPress Multiple Vulnerabilities (6.5.7)
WordPress Plugin WordPress Bitcoin Payments-Blockonomics Cross-Site Scripting (3.2)