CVE-2022-31625 Postgres database extension doesn't like invalid parameters in older versions of PHP. This can lead to memory being freed using uninitialized data as pointers.

CVE-2022-31625 Postgres database extension doesn't like invalid parameters in older versions of PHP. This can lead to memory being freed using uninitialized data as pointers.

Parameter sniffing is a security feature in most modern programming languages that prevents accidental access to uninitialized data by checking the type of each variable when it is accessed. In PHP versions below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, this safety feature may be circumvented by supplying invalid parameters that lead to PHP attempting to free memory using uninitialized data as pointers. Any user with access to the SQL database or a remote attacker with access to the server who can perform SQL injection can exploit this issue. This issue was addressed in these versions of PHP by limiting the amount of memory that can be allocated or by changing the way invalid parameters are handled.

SQL Injection Vulnerability

In the past, these features were implemented to prevent a malicious user from accessing uninitialized data. In some cases, this can also be used as a means to exploit a SQL injection vulnerability. This issue was addressed in these versions of PHP by limiting the amount of memory that can be allocated or by changing the way invalid parameters are handled.

References

Subscribe to CVE.news
Don’t miss out on the latest issues. Sign up now to get access to the library of members-only issues.
jamie@example.com
Subscribe