PHP Fileinfo Component 'cdf_check_stream_offset()' Function Remote Denial of Service Vulnerability

Bugtraq ID: 68241
Class: Boundary Condition Error
CVE: CVE-2014-3479
Remote: Yes
Local: No
Published: Jun 10 2014 12:00AM
Updated: Sep 19 2014 12:16AM
Credit: Francisco Alonso of the Red Hat Security Response Team
Vulnerable: Ubuntu Ubuntu Linux 12.04 LTS i386
Ubuntu Ubuntu Linux 12.04 LTS amd64
Ubuntu Ubuntu Linux 10.04 sparc
Ubuntu Ubuntu Linux 10.04 powerpc
Ubuntu Ubuntu Linux 10.04 i386
Ubuntu Ubuntu Linux 10.04 ARM
Ubuntu Ubuntu Linux 10.04 amd64
RedHat Enterprise Linux Desktop Workstation 5 client
Red Hat Enterprise Linux Workstation 6
Red Hat Enterprise Linux Server 6
Red Hat Enterprise Linux HPC Node 6
Red Hat Enterprise Linux Desktop 6
Red Hat Enterprise Linux 5 Server
Oracle Enterprise Linux 6.2
Oracle Enterprise Linux 6
HP HP-UX B.11.31
Debian Linux 6.0 sparc
Debian Linux 6.0 s/390
Debian Linux 6.0 powerpc
Debian Linux 6.0 mips
Debian Linux 6.0 ia-64
Debian Linux 6.0 ia-32
Debian Linux 6.0 arm
Debian Linux 6.0 amd64
CentOS CentOS 6
Not Vulnerable:


Privacy Statement
Copyright 2010, SecurityFocus