CVE-2007-1521 (retired)

Priority
Description
Double free vulnerability in PHP before 4.4.7, and 5.x before 5.2.2, allows
context-dependent attackers to execute arbitrary code by interrupting the
session_regenerate_id function, as demonstrated by calling a userspace
error handler or triggering a memory limit violation.
Package
Source: php5 (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:07:43 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)