N/A

The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation during initial error checking, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted XML document, a different vulnerability than CVE-2015-6838.

N/A

N/A

PHP‘valuePop()’函数拒绝服务漏洞

PHP（PHP：Hypertext Preprocessor，PHP：超文本预处理器）是PHP Group和开放源代码社区共同维护的一种开源的通用计算机脚本语言。该语言主要用于Web开发，支持多种数据库及操作系统。 PHP的ext/xsl/xsltprocessor.c文件中的‘xsl_ext_function_php’函数存在安全漏洞，该漏洞源于当程序使用libxml2 2.9.2之前版本时，在初始错误检查期间执行释放操作时没有考虑空的valuePop返回值。远程攻击者可借助特制的XML文档利用该漏洞造

N/A

N/A