Summary
Certain inputs provided to mb_encode_mimeheader trigger an endless loop.
Details
A discernible pattern has not yet been identified, but a specific string consistently reproduces the issue.
PoC
In PHP 8.3.3, execute:
mb_encode_mimeheader runs endlessly for some inputs
Inhalt
Verknuepfte CVEs
| CVE-ID | Severity (CVE.org) | CVSS (CVE.org) | EPSS | EPSS-% | Veroeffentlicht (CVE.org) |
|---|---|---|---|---|---|
| - | - | - | - |
Quellen-Details
| Bezeichnung | Name | Kategorie | Tags | Zielgruppe | Sprache | Feed-URL |
|---|---|---|---|---|---|---|
| PHP Security (php/php-src GHSA) | vendor_advisory | php, runtime | - | de | https://github.com/php/php-src/security/advisories |