php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Sec Bug #67327 fileinfo: CDF infinite loop in nelements DoS
Submitted: 2014-05-22 14:23 UTC Modified: 2014-05-27 01:14 UTC
From: remi@php.net Assigned:
Status: Closed Package: Filesystem function related
PHP Version: 5.4.28 OS:
Private report: No CVE-ID: 2014-0238
 [2014-05-22 14:23 UTC] remi@php.net
Description:
------------
CVE-2014-0238: Many sections issue with crafted CDF files, leading to many file_printf calls that trigger bad performance (and possibly some asprintf issues).

(notice: bad CVE refers in the commit title)

https://github.com/file/file/commit/f97486ef5dc3e8735440edc4fc8808c63e1a3ef0



Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2014-05-22 14:23 UTC] remi@php.net
-CVE-ID: +CVE-ID: 2014-0238
 [2014-05-27 01:15 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-05-27 01:15 UTC] stas@php.net
-Status: Open +Status: Closed
 [2014-05-27 10:25 UTC] ab@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-05-27 10:26 UTC] ab@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-05-27 19:18 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=22736b7c56d678f142d5dd21f4996e5819507a2b
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-06-01 15:05 UTC] laruence@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-06-04 01:22 UTC] tyrael@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-07-29 21:57 UTC] johannes@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=d77ea459bd33a5267475a809a86f30a1d89ef0c2
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-08-14 15:34 UTC] johannes@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=d77ea459bd33a5267475a809a86f30a1d89ef0c2
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-08-14 19:32 UTC] dmitry@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=d77ea459bd33a5267475a809a86f30a1d89ef0c2
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-10-07 23:14 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=d77ea459bd33a5267475a809a86f30a1d89ef0c2
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-10-07 23:15 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-10-07 23:25 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=d77ea459bd33a5267475a809a86f30a1d89ef0c2
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 [2014-10-07 23:26 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=57225f09edd671db50137194cb83530884cb6030
Log: Fix bug #67327: fileinfo: CDF infinite loop in nelements DoS
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sun Nov 24 15:01:36 2024 UTC