PHP : Security Vulnerabilities, CVEs, Published In February 2011 (Denial of service)
Race condition in the PCNTL extension in PHP before 5.3.4, when a user-defined signal handler exists, might allow context-dependent attackers to cause a denial of service (memory corruption) via a large number of concurrent signals.
Max CVSS
4.3
EPSS Score
0.35%
Published
2011-02-02
Updated
2018-10-30
The grapheme_extract function in the Internationalization extension (Intl) for ICU for PHP 5.3.5 allows context-dependent attackers to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference.
Max CVSS
5.0
EPSS Score
2.15%
Published
2011-02-19
Updated
2018-10-10
2 vulnerabilities found