Total vulnerabilities in the database
The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation after the principal argument loop, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted XML document, a different vulnerability than CVE-2015-6837.
| Software | From | Fixed in |
|---|---|---|
| php / php | 5.6.0-beta2 | 5.6.0-beta2.x |
| php / php | 5.6.0-beta1 | 5.6.0-beta1.x |
| php / php | 5.6.0-alpha5 | 5.6.0-alpha5.x |
| php / php | 5.6.0-alpha3 | 5.6.0-alpha3.x |
| php / php | 5.6.0-beta3 | 5.6.0-beta3.x |
| php / php | 5.6.0-beta4 | 5.6.0-beta4.x |
| php / php | 5.6.0-alpha2 | 5.6.0-alpha2.x |
| php / php | 5.6.0-alpha1 | 5.6.0-alpha1.x |
| php / php | 5.6.0-alpha4 | 5.6.0-alpha4.x |
| php / php | 5.6.1 | 5.6.1.x |
| php / php | 5.6.2 | 5.6.2.x |
| php / php | 5.6.3 | 5.6.3.x |
| php / php | 5.6.4 | 5.6.4.x |
| php / php | 5.6.5 | 5.6.5.x |
| php / php | 5.6.6 | 5.6.6.x |
| php / php | 5.6.7 | 5.6.7.x |
| php / php | 5.6.8 | 5.6.8.x |
| php / php | 5.6.9 | 5.6.9.x |
| php / php | 5.6.10 | 5.6.10.x |
| php / php | 5.6.11 | 5.6.11.x |
| php / php | 5.6.12 | 5.6.12.x |
| xmlsoft / libxml2 | - | 2.9.1.x |
| php / php | 5.5.0-alpha1 | 5.5.0-alpha1.x |
| php / php | 5.5.0-alpha3 | 5.5.0-alpha3.x |
| php / php | 5.5.0-beta3 | 5.5.0-beta3.x |
| php / php | 5.5.0 | 5.5.0.x |
| php / php | 5.5.0-beta1 | 5.5.0-beta1.x |
| php / php | 5.5.0-rc1 | 5.5.0-rc1.x |
| php / php | 5.5.0-beta4 | 5.5.0-beta4.x |
| php / php | 5.5.0-alpha6 | 5.5.0-alpha6.x |
| php / php | 5.5.0-beta2 | 5.5.0-beta2.x |
| php / php | 5.5.0-alpha4 | 5.5.0-alpha4.x |
| php / php | 5.5.0-alpha5 | 5.5.0-alpha5.x |
| php / php | 5.5.0-alpha2 | 5.5.0-alpha2.x |
| php / php | 5.5.0-rc2 | 5.5.0-rc2.x |
| php / php | 5.5.1 | 5.5.1.x |
| php / php | 5.5.2 | 5.5.2.x |
| php / php | 5.5.3 | 5.5.3.x |
| php / php | 5.5.4 | 5.5.4.x |
| php / php | 5.5.5 | 5.5.5.x |
| php / php | 5.5.6 | 5.5.6.x |
| php / php | 5.5.7 | 5.5.7.x |
| php / php | 5.5.8 | 5.5.8.x |
| php / php | 5.5.9 | 5.5.9.x |
| php / php | 5.5.10 | 5.5.10.x |
| php / php | 5.5.11 | 5.5.11.x |
| php / php | 5.5.12 | 5.5.12.x |
| php / php | 5.5.13 | 5.5.13.x |
| php / php | 5.5.14 | 5.5.14.x |
| php / php | 5.5.15 | 5.5.15.x |
| php / php | 5.5.16 | 5.5.16.x |
| php / php | 5.5.17 | 5.5.17.x |
| php / php | 5.5.18 | 5.5.18.x |
| php / php | 5.5.19 | 5.5.19.x |
| php / php | 5.5.20 | 5.5.20.x |
| php / php | 5.5.21 | 5.5.21.x |
| php / php | 5.5.22 | 5.5.22.x |
| php / php | 5.5.23 | 5.5.23.x |
| php / php | 5.5.24 | 5.5.24.x |
| php / php | 5.5.25 | 5.5.25.x |
| php / php | 5.5.26 | 5.5.26.x |
| php / php | 5.5.27 | 5.5.27.x |
| php / php | 5.5.28 | 5.5.28.x |
| php / php | - | 5.4.44.x |