Full title: PHP yaml_parse_url Double Free Vulnerability 
Category: remote exploits
Platform: php
The yaml_* parsing functions suffers from an exploitable double free caused by the error path for the php_var_unserialize() call on line 797 of pecl/file_formats/yaml.git/parse.c.

# 0day.today @ http://0day.today/