diff options
author | Yue Tao <Yue.Tao@windriver.com> | 2014-10-23 16:29:14 +0800 |
---|---|---|
committer | Martin Jansa <Martin.Jansa@gmail.com> | 2014-10-30 09:00:07 +0100 |
commit | 700078d6646c79a784cec2cb0a491687e3edd21b (patch) | |
tree | 958f72b13e39f7986bdf92e222c8badb16c95de9 /meta-webserver/conf | |
parent | 81aecee0eda7600e6a6ae3f8264b2a1bc7a57f04 (diff) | |
download | meta-openembedded-contrib-700078d6646c79a784cec2cb0a491687e3edd21b.tar.gz |
modphp: Security Advisory - php - CVE-2014-3587
Integer overflow in the cdf_read_property_info function in cdf.c in file
through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and
5.5.x before 5.5.16, allows remote attackers to cause a denial of
service (application crash) via a crafted CDF file. NOTE: this
vulnerability exists because of an incomplete fix for CVE-2012-1571.
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3587
Signed-off-by: Yue Tao <Yue.Tao@windriver.com>
Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>
Diffstat (limited to 'meta-webserver/conf')
0 files changed, 0 insertions, 0 deletions