Description

Double free vulnerability in the zend_ts_hash_graceful_destroy function in zend_ts_hash.c in the Zend Engine in PHP through 5.5.20 and 5.6.x through 5.6.4 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors.

Remediation

References

CVE-2014-9425

Related Vulnerabilities

WordPress Plugin Simple Fields Cross-Site Scripting (1.4.10)

WordPress Plugin Cool Tag Cloud Cross-Site Scripting (2.25)

WordPress Plugin Event Registration 'event_id' Parameter SQL Injection (5.32)

WordPress Plugin Easy Contact Forms Export 'file' Parameter Information Disclosure (1.1.0)

OpenSSL Resource Management Errors Vulnerability (CVE-2016-6304)

Severity

High

Classification

CVE-2014-9425

Tags

Missing Update Known Vulnerabilities