Description
Zend/zend_exceptions.c in PHP, possibly 5.x before 5.6.28 and 7.x before 7.0.13, allows remote attackers to cause a denial of service (infinite loop) via a crafted Exception object in serialized data, a related issue to CVE-2015-8876.
Remediation
References
Related Vulnerabilities
WordPress Plugin Safe SVG Denial of Service (1.9.4)
Drupal Core 9.0.0 Security Bypass (9.0.0)
WordPress Plugin Contact Form by Supsystic Cross-Site Scripting (1.7.14)
ownCloud Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-5665)
TYPO3 Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2009-3628)