Your submission was sent successfully! Close

CVE-2014-9652

Published: 8 January 2015

The mconvert function in softmagic.c in file before 5.21, as used in the Fileinfo component in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not properly handle a certain string-length field during a copy of a truncated version of a Pascal string, which might allow remote attackers to cause a denial of service (out-of-bounds memory access and application crash) via a crafted file.

Priority

Low

Status

Package Release Status
file
Launchpad, Ubuntu, Debian
lucid Not vulnerable
(verified with valgrind)
precise
Released (5.09-2ubuntu0.6)
trusty
Released (1:5.14-2ubuntu3.3)
upstream
Released (1:5.21+15-1)
utopic
Released (1:5.19-1ubuntu1.2)
php5
Launchpad, Ubuntu, Debian
lucid Not vulnerable
(relevant code similar to lucid's file)
precise Not vulnerable
(relevant code similar to lucid's file)
trusty
Released (5.5.9+dfsg-1ubuntu4.6)
upstream
Released (5.6.5+dfsg-1)
utopic
Released (5.5.12+dfsg-2ubuntu4.2)