The Zend Engine in PHP 4.x before 4.4.7, and 5.x before 5.2.2, allows remote attackers to cause a denial of service (stack exhaustion and PHP crash) via deeply nested arrays, which trigger deep recursion in the variable destruction routines.
The product does not properly control the amount of recursion that takes place, consuming excessive resources, such as allocated memory or the program stack.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Php | Php | 4.0.0 (including) | 4.4.7 (excluding) |
| Php | Php | 5.0.0 (including) | 5.2.2 (excluding) |
| Red Hat Enterprise Linux 2.1 | RedHat | php-0:4.1.2-2.17 | * |
| Red Hat Enterprise Linux 3 | RedHat | php-0:4.3.2-40.ent | * |
| Red Hat Enterprise Linux 4 | RedHat | php-0:4.3.9-3.22.4 | * |
| Red Hat Enterprise Linux 5 | RedHat | php-0:5.1.6-7.el5 | * |
| Red Hat Web Application Stack for RHEL 4 | RedHat | php-0:5.1.6-3.el4s1.6 | * |
| Stronghold 4.0 for RHEL 2.1AS | RedHat | stronghold-php-0:4.1.2-15 | * |
| Php5 | Ubuntu | dapper | * |
| Php5 | Ubuntu | devel | * |
| Php5 | Ubuntu | edgy | * |
| Php5 | Ubuntu | feisty | * |