High severity7.5OSV Advisory· Published Aug 3, 2018· Updated Jun 17, 2026
CVE-2018-14884
CVE-2018-14884
Description
An issue was discovered in PHP 7.0.x before 7.0.27, 7.1.x before 7.1.13, and 7.2.x before 7.2.1. Inappropriately parsing an HTTP response leads to a segmentation fault because http_header_value in ext/standard/http_fopen_wrapper.c can be a NULL value that is mishandled in an atoi call.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
4- bugs.php.net/bug.phpnvdExploitIssue TrackingPatchVendor Advisory
- php.net/ChangeLog-7.phpnvdVendor Advisory
- security.netapp.com/advisory/ntap-20181107-0003/nvdThird Party Advisory
- access.redhat.com/errata/RHSA-2019:2519nvd
News mentions
0No linked articles in our index yet.