ALAS-2014-361 ---- php54ID: oval:org.secpod.oval:def:1600177 | Date: (C)2016-01-07 (M)2023-12-07 |
Class: PATCH | Family: unix |
The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service by triggering many file_printf calls.The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service via a vector that has zero length or is too long.
Platform: |
Amazon Linux AMI |