CVE-2021-21708
Summary
| CVE | CVE-2021-21708 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2022-02-27 08:15:00 UTC |
| Updated | 2022-10-07 14:31:00 UTC |
| Description | In PHP versions 7.4.x below 7.4.28, 8.0.x below 8.0.16, and 8.1.x below 8.1.3, when using filter functions with FILTER_VALIDATE_FLOAT filter and min/max limits, if the filter fails, there is a possibility to trigger use of allocated memory after free, which can result it crashes, and potentially in overwrite of other memory chunks and RCE. This issue affects: code that uses FILTER_VALIDATE_FLOAT with min/max limits. |
Risk And Classification
Problem Types: CWE-416
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| PHP: Multiple Vulnerabilities (GLSA 202209-20) — Gentoo security | GENTOO | security.gentoo.org | |
| CVE-2021-21708 PHP Vulnerability in NetApp Products | NetApp Product Security | CONFIRM | security.netapp.com | |
| PHP :: Sec Bug #81708 :: UAF due to php_filter_float() failing for ints | CONFIRM | bugs.php.net | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
Vendor Comments And Credit
Discovery Credit
LEGACY: dukk at softdev dot online
Legacy QID Mappings
- 150525 PHP Input Validation Vulnerability (CVE-2021-21708)
- 160244 Oracle Enterprise Linux Security Update for php:7.4 (ELSA-2022-7628)
- 160246 Oracle Enterprise Linux Security Update for php:8.0 (ELSA-2022-7624)
- 160289 Oracle Enterprise Linux Security Update for Hypertext Preprocessor (PHP) (ELSA-2022-8197)
- 179085 Debian Security Update for php7.4 (DSA 5082-1)
- 198680 Ubuntu Security Notification for Hypertext Preprocessor (PHP) Vulnerability (USN-5303-1)
- 240853 Red Hat Update for php:8.0 security (RHSA-2022:7624)
- 240855 Red Hat Update for php:7.4 security (RHSA-2022:7628)
- 240866 Red Hat Update for Hypertext Preprocessor (PHP) security (RHSA-2022:8197)
- 282423 Fedora Security Update for Hypertext Preprocessor (PHP) (FEDORA-2022-1596a2dacb)
- 282424 Fedora Security Update for Hypertext Preprocessor (PHP) (FEDORA-2022-2e5e723298)
- 354412 Amazon Linux Security Advisory for Hypertext Preprocessor (PHP) : ALAS2022-2022-073
- 354425 Amazon Linux Security Advisory for Hypertext Preprocessor (PHP) : ALAS2022-2022-085
- 356068 Amazon Linux Security Advisory for Hypertext Preprocessor (PHP) : ALASPHP8.0-2023-007
- 356085 Amazon Linux Security Advisory for Hypertext Preprocessor (PHP) : ALASPHP8.0-2023-007
- 377999 Alibaba Cloud Linux Security Update for php:7.4 (ALINUX3-SA-2023:0018)
- 38869 Hypertext Preprocessor (PHP) Use After free Vulnerability
- 502152 Alpine Linux Security Update for php7
- 502153 Alpine Linux Security Update for php8
- 502567 Alpine Linux Security Update for php7
- 710633 Gentoo Linux Hypertext Preprocessor (PHP) Multiple Vulnerabilities (GLSA 202209-20)
- 751769 SUSE Enterprise Linux Security Update for php74 (SUSE-SU-2022:0654-1)
- 751885 SUSE Enterprise Linux Security Update for php7 (SUSE-SU-2022:0847-1)
- 751890 OpenSUSE Security Update for php7 (openSUSE-SU-2022:0847-1)
- 752863 SUSE Enterprise Linux Security Update for php7 (SUSE-SU-2022:3997-1)
- 752898 SUSE Enterprise Linux Security Update for php7 (SUSE-SU-2022:4069-1)
- 752901 SUSE Enterprise Linux Security Update for php74 (SUSE-SU-2022:4068-1)
- 901901 Common Base Linux Mariner (CBL-Mariner) Security Update for Hypertext Preprocessor (PHP) (8846)
- 940756 AlmaLinux Security Update for php:7.4 (ALSA-2022:7628)
- 940757 AlmaLinux Security Update for php:8.0 (ALSA-2022:7624)
- 940810 AlmaLinux Security Update for Hypertext Preprocessor (PHP) (ALSA-2022:8197)
- 960248 Rocky Linux Security Update for php:8.0 (RLSA-2022:7624)
- 960333 Rocky Linux Security Update for php:7.4 (RLSA-2022:7628)
- 960472 Rocky Linux Security Update for Hypertext Preprocessor (PHP) (RLSA-2022:8197)