OSV-2022-863

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/php/OSV-2022-863.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2022-863
Published
2022-09-08T00:02:36.883642Z
Modified
2022-09-15T02:50:36.298826Z
Summary
Heap-use-after-free in user_wrapper_opendir
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=51047

Crash type: Heap-use-after-free READ 10
Crash state:
user_wrapper_opendir
_php_stream_opendir
_php_do_opendir
References

Affected packages

OSS-Fuzz / php

Package

Name
php
Purl
pkg:generic/php

Affected ranges

Type
GIT
Repo
https://github.com/php/php-src.git
Events
Introduced
cae80ef552c7da262e8070264ccf778454477a08
Fixed
09aa27cc0993e321678b6e66a1d3fc428b6e3c59
Fixed
9af98cd4657bfcfe21f42ab36d9be7de7b2709b2

Affected versions

php-8.*

php-8.1.0
php-8.1.2RC1
php-8.1.3
php-8.1.4RC1
php-8.1.7RC1

Ecosystem specific 

{
    "severity": "HIGH"
}