OSV-2021-926

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/php/OSV-2021-926.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2021-926
Published
2021-07-08T00:00:29.564756Z
Modified
2022-04-13T03:04:33.657097Z
Summary
Heap-use-after-free in zend_gc_addref
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=35876

Crash type: Heap-use-after-free READ 4
Crash state:
zend_gc_addref
ZEND_ASSIGN_OP_SPEC_VAR_TMPVAR_HANDLER
fuzzer_execute_ex
References

Affected packages

OSS-Fuzz / php

Package

Name
php
Purl
pkg:generic/php

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src.git
Events
Introduced
540fed1b3654339fc4683ed128f7a1c351e34c4f
Fixed
62ecf54f35e227d09d19ec40920f7bb8d29e9356

Ecosystem specific 

{
    "severity": "HIGH"
}