Description
Memory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a denial of service (memory consumption) by triggering many strtotime function calls, which are not properly handled by the php_date_parse_tzfile cache.
Remediation
References
Related Vulnerabilities
Tornado Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2014-9720)
Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0464)
Python Improper Encoding or Escaping of Output Vulnerability (CVE-2020-26116)
WordPress Plugin Zedity:The Easiest Way To Create Posts & Pages Unspecified Vulnerability (5.0.2)