CVE-2024-11236 Information

Description

In PHP versions 8.1. before 8.1.31 8.2. before 8.2.26 8.3. before 8.3.14 uncontrolled long string inputs to ldap_escape() function on 32-bit systems can cause an integer overflow resulting in an out-of-bounds write.

Reference

https://github.com/php/php-src/security/advisories/GHSA-5hqh-c84r-qjcv