{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "last_affected": "11-sp4" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "42.1" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "13.2" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "11-sp4" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "11-sp4" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "0" }, { "fixed": "5.5.37" }, { "introduced": "5.6.0" }, { "fixed": "5.6.23" }, { "introduced": "7.0.0" }, { "fixed": "7.0.8" }, { "introduced": "0" }, { "last_affected": "8.0" } ] }, "events": [ { "introduced": "0" }, { "fixed": "d5747a70cf612e653b0e56dfa50efb29bbba273d" }, { "introduced": "fc1df8e7a6886e29a6ed5bef3f674ac61164e847" }, { "fixed": "961e562d1b7e7d67c7370022a167938641d607ea" }, { "introduced": "60fffd296abce5fc071f3c173c25a2696cf683c6" }, { "fixed": "a36407215f69ba2debf77933dcb3faa0c3ba2d04" }, { "introduced": "0" }, { "last_affected": "5dc92c2117cafc61daaaaa240fd46c3ac33872a4" }, { "fixed": "a44c89e8af7c2410f4bfc5e097be2a5d0639a60c" } ], "repo": "https://github.com/php/php-src", "type": "GIT" } ] } ], "details": "Double free vulnerability in the php_wddx_process_data function in wddx.c in the WDDX extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via crafted XML data that is mishandled in a wddx_deserialize call.", "id": "CVE-2016-5772", "modified": "2026-04-01T23:08:56.945880370Z", "published": "2016-08-07T10:59:20.680Z", "references": [ { "type": "ADVISORY", "url": "http://php.net/ChangeLog-7.php" }, { "type": "ADVISORY", "url": "http://rhn.redhat.com/errata/RHSA-2016-2750.html" }, { "type": "ADVISORY", "url": "http://www.debian.org/security/2016/dsa-3618" }, { "type": "ADVISORY", "url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05240731" }, { "type": "ADVISORY", "url": "http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.html" }, { "type": "ADVISORY", "url": "http://lists.opensuse.org/opensuse-updates/2016-08/msg00003.html" }, { "type": "ADVISORY", "url": "http://www.securityfocus.com/bid/91398" }, { "type": "ADVISORY", "url": "https://support.apple.com/HT207170" }, { "type": "ADVISORY", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00004.html" }, { "type": "ADVISORY", "url": "http://lists.opensuse.org/opensuse-security-announce/2016-08/msg00025.html" }, { "type": "REPORT", "url": "https://bugs.php.net/bug.php?id=72340" }, { "type": "FIX", "url": "http://www.openwall.com/lists/oss-security/2016/06/23/4" }, { "type": "FIX", "url": "http://php.net/ChangeLog-5.php" }, { "type": "FIX", "url": "http://github.com/php/php-src/commit/a44c89e8af7c2410f4bfc5e097be2a5d0639a60c?w=1" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ] }