diff options
author | Yue Tao <Yue.Tao@windriver.com> | 2014-10-23 16:29:15 +0800 |
---|---|---|
committer | Martin Jansa <Martin.Jansa@gmail.com> | 2014-10-30 09:00:07 +0100 |
commit | 8d50adfe536f3dc94313318f834946e634441c8a (patch) | |
tree | 96e6f0c3769f2c6764c1e541ca283341313d9f15 /meta-gpe | |
parent | 700078d6646c79a784cec2cb0a491687e3edd21b (diff) | |
download | meta-openembedded-contrib-8d50adfe536f3dc94313318f834946e634441c8a.tar.gz |
modphp: Security Advisory - php - CVE-2014-3597
Multiple buffer overflows in the php_parserr function in
ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow
remote DNS servers to cause a denial of service (application crash) or
possibly execute arbitrary code via a crafted DNS record, related to the
dns_get_record function and the dn_expand function. NOTE: this issue
exists because of an incomplete fix for CVE-2014-4049.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3597
Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Diffstat (limited to 'meta-gpe')
0 files changed, 0 insertions, 0 deletions