modphp: Security Advisory - php - CVE-2014-3587 - meta-openembedded-contrib - OpenEmbedded layers collection contribution trees

diff options

author	Yue Tao <Yue.Tao@windriver.com>	2014-10-23 16:29:14 +0800
committer	Martin Jansa <Martin.Jansa@gmail.com>	2014-10-30 09:00:07 +0100
commit	700078d6646c79a784cec2cb0a491687e3edd21b (patch)
tree	958f72b13e39f7986bdf92e222c8badb16c95de9 /meta-webserver/conf
parent	81aecee0eda7600e6a6ae3f8264b2a1bc7a57f04 (diff)
download	meta-openembedded-contrib-700078d6646c79a784cec2cb0a491687e3edd21b.tar.gz

modphp: Security Advisory - php - CVE-2014-3587

Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1571. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3587 Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Martin Jansa <Martin.Jansa@gmail.com>

Diffstat (limited to 'meta-webserver/conf')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: