A weakness and vulnerability have been reported in PHP 5, where the vulnerability has unknown impact and the weakness can be exploited by malicious, local users to bypass certain security restrictions.

The vulnerability is caused due to an integer overflow error in the 'chunk_split()' function.

An error in the 'realpath()' function allows bypassing of the 'open_basedir' restriction and identifying the existence of files.

The solution is to upgrade to version 5.2.3.