[Secure-testing-team] Bug#740960: php5: CVE-2014-2270: out-of-bounds memory access in fileinfo
Salvatore Bonaccorso
carnil at debian.org
Thu Mar 6 17:55:10 UTC 2014
Source: php5
Severity: important
Tags: security upstream fixed-upstream
Hi
Another CVE was assigned for a issue in file/libmagic also affecting
the embedded copy in php5. It has assigned CVE-2014-2270[1]. php5
bugreport is at [2] and a fix already commited [3].
[1] https://security-tracker.debian.org/tracker/CVE-2014-2270
[2] https://bugs.php.net/bug.php?id=66820
[3] http://git.php.net/?p=php-src.git;a=commitdiff;h=a33759fd275b32ed0bbe89796fe2953b3cb0b41f
Regards,
Salvatore
More information about the Secure-testing-team
mailing list