Wind River Support Network

HomeDefectsLIN6-7950

Fixed

LIN6-7950 : Security Advisory - php - CVE-2014-0207

Created: Jul 16, 2014 Updated: Dec 3, 2018

Resolved Date: Sep 22, 2014

Found In Version: 6.0

Fix Version: 6.0.0.13

Severity: Standard

Applicable for: Wind River Linux 6

Component/s: Userspace

Description

The cdf_read_short_sector function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted CDF file.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-0207

Other Downloads

Wind River Linux 6.0.0.29
Wind River Linux 6.0.0.30
Wind River Linux 6.0.0.31
Wind River Linux 6.0.0.32
Wind River Linux 6.0.0.33
Wind River Linux 6.0.0.34
Wind River Linux 6.0.0.35
Wind River Linux 6.0.0.36
Wind River Linux 6.0.0.37
Wind River Linux 6.0.0.38