php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Sec Bug #67329 fileinfo: NULL pointer deference flaw by processing certain CDF files
Submitted: 2014-05-22 14:31 UTC Modified: 2014-06-27 08:05 UTC
From: remi@php.net Assigned: ab (profile)
Status: Closed Package: Filesystem function related
PHP Version: 5.6 OS:
Private report: No CVE-ID: 2014-0236
 [2014-05-22 14:31 UTC] remi@php.net
Description:
------------
CVE-2014-0236: NULL pointer deference flaw by processing certain CDF files with null value in root_storage.This bug has been introduced by:

https://github.com/file/file/commit/209113ac443c82cc7573bb228b68ce1dd9d50f90



Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2014-05-22 14:32 UTC] remi@php.net
-CVE-ID: +CVE-ID: 2014-0236
 [2014-06-03 09:40 UTC] ab@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: ab
 [2014-06-03 09:40 UTC] ab@php.net
The fix for this bug has been committed.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.

 For Windows:

http://windows.php.net/snapshots/
 
Thank you for the report, and for helping us make PHP better.

Applied here

http://git.php.net/?p=php-src.git;a=commitdiff;h=f3f22ff5c697aef854ffc1918bce708b37481b0f
 [2014-06-03 09:41 UTC] ab@php.net
-PHP Version: 5.4.28 +PHP Version: 5.6
 [2014-10-07 02:59 UTC] gbetz at tenable dot com
Does this affect all versions of PHP prior to 5.6.0?

Looking through the Git repos for other versions, this does not appear to be fixed in other versions (e.g. 5.5.x).
 [2014-10-07 06:40 UTC] kaplan@php.net
PHP 5.5 has libmagic 5.14 while PHP 5.6 has libmagic 5.17. AFAIK, 5.14 isn't affected.
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sun Dec 22 06:01:30 2024 UTC