Integer overflow in the SplFileObject::fread function in spl_directory.c in the SPL extension in PHP prior to 5.5.37 and 5.6.x prior to 5.6.23 allows remote malicious users to cause a denial of service or possibly have unspecified other impact via a large integer argument, a related issue to CVE-2016-5096.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php |
||
opensuse leap 42.1 |
||
opensuse opensuse 13.2 |
||
debian debian linux 8.0 |