php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Sec Bug #67412 fileinfo: cdf_count_chain insufficient boundary check
Submitted: 2014-06-10 11:43 UTC Modified: 2014-06-27 08:05 UTC
From: remi@php.net Assigned: remi (profile)
Status: Closed Package: Filesystem function related
PHP Version: 5.4.29 OS: irrevelant
Private report: No CVE-ID: 2014-3480
Welcome back! If you're the original bug submitter, here's where you can edit the bug or add additional notes.
If you forgot your password, you can retrieve your password here.
Password:
Status:
Package:
Bug Type:
Summary:
From: remi@php.net
New email:
PHP Version: OS:

 

 [2014-06-10 11:43 UTC] remi@php.net
Description:
------------
A flaw was found in the way file uses cdf_count_chain() function to processes maxsector for certain Composite Document Format (CDF) files. 

Upstream commit:
https://github.com/file/file/commit/40bade80cbe2af1d0b2cd0420cebd5d5905a2382


Acknowledgment:

This issue was discovered by Francisco Alonso of the Red Hat Security Response Team.


Patches

Pull Requests

History

AllCommentsChangesGit/SVN commitsRelated reports
 [2014-06-10 11:44 UTC] remi@php.net
-CVE-ID: +CVE-ID: 2014-3480
 [2014-06-10 11:44 UTC] remi@php.net
Waitinf for CVE-2014-3480 public disclosure date
 [2014-06-10 12:25 UTC] remi@php.net
-Status: Open +Status: Closed -Assigned To: +Assigned To: remi
 [2014-06-10 12:25 UTC] remi@php.net
The fix for this bug has been committed.

Snapshots of the sources are packaged every three hours; this change
will be in the next snapshot. You can grab the snapshot at
http://snaps.php.net/.

 For Windows:

http://windows.php.net/snapshots/
 
Thank you for the report, and for helping us make PHP better.

http://git.php.net/?p=php-src.git;a=commit;h=40ef6e07e0b2cdced57c506e08cf18f47122292d
 
PHP Copyright © 2001-2024 The PHP Group
All rights reserved.
Last updated: Sat Oct 05 22:01:26 2024 UTC