OSV-2022-87

Import Source

JSON Data

https://api.osv.dev/v1/vulns/OSV-2022-87

Published

2022-01-24T00:01:39.876775Z

Modified

2022-04-13T03:04:33.651611Z

Summary

Heap-use-after-free in zend_std_get_property_ptr_ptr

Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=43988

Crash type: Heap-use-after-free READ 8
Crash state:
zend_std_get_property_ptr_ptr
zend_fetch_property_address
ZEND_FETCH_OBJ_W_SPEC_CV_CONST_HANDLER

References

Affected packages

Type: GIT
Repo: https://github.com/php/php-src.git
Events: Introduced

902d64390e49f8bf970588cf53cd8e00630c68bb

Fixed

f1ae13509f23a639bd47b4035e6bf74c68cef752

{
    "severity": "HIGH"
}