Description
The php_mysqlnd_read_error_from_line function in the Mysqlnd extension in PHP 5.3 through 5.3.2 does not properly calculate a buffer length, which allows context-dependent attackers to trigger a heap-based buffer overflow via crafted inputs that cause a negative length value to be used.
Remediation
References
Related Vulnerabilities
WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-10100)
WordPress Plugin WP Gravity Forms Zendesk Cross-Site Scripting (1.0.7)
Oracle HTTP Server Use After Free Vulnerability (CVE-2019-10082)
MediaWiki Improper Access Control Vulnerability (CVE-2016-6336)
Oracle Application Server Other Vulnerability (CVE-2007-2130)