modphp: Security Advisory - php - CVE-2014-3597 - meta-openembedded-contrib - OpenEmbedded layers collection contribution trees

diff options

author	Yue Tao <Yue.Tao@windriver.com>	2014-10-23 16:29:15 +0800
committer	Martin Jansa <Martin.Jansa@gmail.com>	2014-10-30 09:00:07 +0100
commit	8d50adfe536f3dc94313318f834946e634441c8a (patch)
tree	96e6f0c3769f2c6764c1e541ca283341313d9f15 /meta-multimedia
parent	700078d6646c79a784cec2cb0a491687e3edd21b (diff)
download	meta-openembedded-contrib-8d50adfe536f3dc94313318f834946e634441c8a.tar.gz

modphp: Security Advisory - php - CVE-2014-3597

Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3597 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Diffstat (limited to 'meta-multimedia')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: