Sean Heelan

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.4.44 PHP versions 5.5.x prior to 5.5.28 PHP versions 5.6.x prior to 5.6.12 **Description** The issue is related to a use-after-free vulnerability in the SPL unserialize implementation. This vulnerability can be exploited by remote attackers to execute arbitrary code via specially crafted serialized data, leading to misuse of an array field. **Recommendations** For PHP versions prior to 5.4.44, update to version 5.4.44 or later. For PHP versions 5.5.x prior to 5.5.28, update to version 5.5.28 or later. For PHP versions 5.6.x prior to 5.6.12, update to version 5.6.12 or later.