[php-maint] Bug#740960: php5: CVE-2014-2270: out-of-bounds memory access in fileinfo

Salvatore Bonaccorso carnil at debian.org
Thu Mar 6 17:55:10 UTC 2014

Source: php5
Severity: important
Tags: security upstream fixed-upstream


Another CVE was assigned for a issue in file/libmagic also affecting
the embedded copy in php5. It has assigned CVE-2014-2270[1]. php5
bugreport is at [2] and a fix already commited [3].

 [1] https://security-tracker.debian.org/tracker/CVE-2014-2270
 [2] https://bugs.php.net/bug.php?id=66820
 [3] http://git.php.net/?p=php-src.git;a=commitdiff;h=a33759fd275b32ed0bbe89796fe2953b3cb0b41f


More information about the pkg-php-maint mailing list