Use After Free Vulnerability in unserialize() with DateTime* [CVE-2015-0273]

Posted by Taoguang Chen on Feb 21

#Use After Free Vulnerability in unserialize() with DateTime* [CVE-2015-0273]

Taoguang Chen <[ () chtg](http://github.com/chtg)> – Write Date:
2015.1.29 – Release Date: 2015.2.20

Affected Versions
————
Affected is PHP 5.6 < 5.6.6
Affected is PHP 5.5 < 5.5.22
Affected is PHP 5.4 < 5.4.38

Credits
————
This vulnerability was disclosed by Taoguang Chen.

Description
————

“`
static int…

007 Software