php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Sec Bug #67328 fileinfo: numerous file_printf calls resulting in performance degradation
Submitted: 2014-05-22 14:28 UTC Modified: 2014-05-27 01:15 UTC
From: remi@php.net Assigned:
Status: Closed Package: Filesystem function related
PHP Version: 5.4.28 OS:
Private report: No CVE-ID: 2014-0237
 [2014-05-22 14:28 UTC] remi@php.net
Description:
------------
CVE-2014-0237: Many sections issue with crafted CDF files, leading to many file_printf calls that trigger bad performance (and possibly some asprintf issues).


Upstream patch:
https://github.com/file/file/commit/b8acc83781d5a24cc5101e525d15efe0482c280d


Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2014-05-22 14:29 UTC] remi@php.net
-Type: Bug +Type: Security -Private report: No +Private report: Yes -CVE-ID: +CVE-ID: 2014-0237
 [2014-05-27 01:15 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-05-27 01:15 UTC] stas@php.net
-Status: Open +Status: Closed
 [2014-05-27 10:25 UTC] ab@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-05-27 10:26 UTC] ab@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-05-27 19:18 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=68ce2d0ea6da79b12a365e375e1c2ce882c77480
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-06-01 15:05 UTC] laruence@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-06-04 01:22 UTC] tyrael@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-07-29 21:56 UTC] johannes@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=ee1ab627639b2b6f8da00c687eb2386f93ec2ef6
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-08-14 15:34 UTC] johannes@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=ee1ab627639b2b6f8da00c687eb2386f93ec2ef6
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-08-14 19:32 UTC] dmitry@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src.git;a=commit;h=ee1ab627639b2b6f8da00c687eb2386f93ec2ef6
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-10-07 23:14 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=ee1ab627639b2b6f8da00c687eb2386f93ec2ef6
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-10-07 23:15 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-10-07 23:25 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=ee1ab627639b2b6f8da00c687eb2386f93ec2ef6
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 [2014-10-07 23:26 UTC] stas@php.net
Automatic comment on behalf of stas
Revision: http://git.php.net/?p=php-src-security.git;a=commit;h=4005f06df6a0f81f38f02a7afaf0760279a3cd6f
Log: Fix bug #67328 (fileinfo: numerous file_printf calls resulting in performance degradation)
 
PHP Copyright © 2001-2015 The PHP Group
All rights reserved.
Last updated: Tue Sep 01 12:01:28 2015 UTC