The following flaw was found in PHP: A heap overflow flaw was found in PHP's curl_escape(). A remote attacker could use this flaw to crash a PHP application. Upstream bug: https://bugs.php.net/bug.php?id=72674 Upstream patch: https://github.com/php/php-src/commit/72dbb7f416160f490c4e9987040989a10ad431c7?w=1