CVE-2015-6837

Published: 5/16/2016 Last updated: 8/6/2024 Reserved: 9/8/2015

The xsl_ext_function_php function in ext/xsl/xsltprocessor.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13, when libxml2 before 2.9.2 is used, does not consider the possibility of a NULL valuePop return value before proceeding with a free operation during initial error checking, which allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted XML document, a different vulnerability than CVE-2015-6838.

CNA assigner: microfocus (f81092c5-7f14-476d-80dc-24857f90be84) Requested by: n/a

Opam packages affected (5)

bap-llvm conf-gtksourceview conf-gtksourceview3 conf-librsvg2 lablgtk3-gtkspell3

Products affected (2)

Product	Vendor	Version
n/a	n/a	< 94587aa17abf8b26f543d2b29c44abc21bc36836
n/a	n/a	2.2

References (24)

http://www.securityfocus.com/bid/76738
http://www.securitytracker.com/id/1033548
https://bugs.php.net/bug.php?id=69782
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3358
https://security.gentoo.org/glsa/201606-10
http://www.securityfocus.com/bid/76738
http://www.securitytracker.com/id/1033548
https://bugs.php.net/bug.php?id=69782
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3358
https://security.gentoo.org/glsa/201606-10
http://www.securityfocus.com/bid/76738
http://www.securitytracker.com/id/1033548
https://bugs.php.net/bug.php?id=69782
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3358
https://security.gentoo.org/glsa/201606-10
http://www.securityfocus.com/bid/76738
http://www.securitytracker.com/id/1033548
https://bugs.php.net/bug.php?id=69782
http://php.net/ChangeLog-5.php
http://www.debian.org/security/2015/dsa-3358
https://security.gentoo.org/glsa/201606-10