The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string that is mishandled by a "Python script text executable" rule.
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2015-4605 from the MITRE CVE dictionary dictionary and NIST NVD.
Base Score | 5 |
---|---|
Base Metrics | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Access Vector | Network |
Access Complexity | Low |
Authentication | None |
Confidentiality Impact | None |
Integrity Impact | None |
Availability Impact | Partial |
Find out more about Red Hat support for the Common Vulnerability Scoring System (CVSS).
Platform | Errata | Release Date |
---|---|---|
Red Hat Software Collections for Red Hat Enterprise Linux 7 (rh-php56-php) | RHSA-2015:1187 | 2015-06-25 |
Red Hat Software Collections for Red Hat Enterprise Linux 7 (php55-php) | RHSA-2015:1186 | 2015-06-25 |
Red Hat Enterprise Linux 7 (php) | RHSA-2015:1135 | 2015-06-23 |
Red Hat Software Collections for Red Hat Enterprise Linux 7 (php54-php) | RHSA-2015:1066 | 2015-06-04 |
Red Hat Software Collections for Red Hat Enterprise Linux 6 (php55-php) | RHSA-2015:1186 | 2015-06-25 |
Red Hat Software Collections for Red Hat Enterprise Linux 6 (rh-php56-php) | RHSA-2015:1187 | 2015-06-25 |
Red Hat Software Collections for Red Hat Enterprise Linux 6 (php54-php) | RHSA-2015:1066 | 2015-06-04 |
Platform | Package | State |
---|---|---|
Red Hat Enterprise Linux 7 | file | Not affected |
Red Hat Enterprise Linux 6 | file | Not affected |
Red Hat Enterprise Linux 6 | php | Not affected |
Red Hat Enterprise Linux 5 | php53 | Not affected |
Red Hat Enterprise Linux 5 | php | Not affected |
Red Hat Enterprise Linux 5 | file | Not affected |