Shusheng Liu

**Name of the Vulnerable Software and Affected Versions** PHP versions prior to 5.4.41 PHP versions 5.5.x prior to 5.5.25 PHP versions 5.6.x prior to 5.6.9 **Description** The issue is related to errors in resource management in the multipart buffer headers function in PHP. This can be exploited by a remote attacker to cause a denial of service, specifically through CPU consumption, by submitting crafted form data that triggers an improper order-of-growth outcome. **Recommendations** For PHP versions prior to 5.4.41, update to version 5.4.41 or later. For PHP versions 5.5.x prior to 5.5.25, update to version 5.5.25 or later. For PHP versions 5.6.x prior to 5.6.9, update to version 5.6.9 or later.