CVE-2014-0238

Synopsis Moderate: file security and bug fix update Type/Severity Security Advisory: Moderate Topic Updated file packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having Moderate securityimpact Commo ...

An improvement was made for PHP FPM environments ...

Several security issues were fixed in PHP ...

Multiple security issues have been found in file, a tool to determine a file type These vulnerabilities allow remote attackers to cause a denial of service, via resource consumption or application crash For the stable distribution (wheezy), these problems have been fixed in version 511-2+deb7u4 For the testing distribution (jessie), these probl ...

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development: CVE-2014-0185 The default PHP FPM socket permission has been changed from 0666 to 0660 to mitigate a security vulnerability (CVE-2014-0185) in PHP FPM that allowed any local user to run a PHP code under the ...

A denial of service flaw was found in the way the File Information (fileinfo) extension parsed certain Composite Document Format (CDF) files A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file ...

A denial of service flaw was found in the way the File Information (fileinfo) extension parsed certain Composite Document Format (CDF) files A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file Buffer overflow in the mconvert function in softmagicc in file before 519, as used in the F ...

A denial of service flaw was found in the way the File Information (fileinfo) extension parsed certain Composite Document Format (CDF) files A remote attacker could use this flaw to crash a PHP application using fileinfo via a specially crafted CDF file acincludem4, as used in the configure script in PHP 5513 and earlier, allows local users to ...

The cdf_unpack_summary_info function in cdfc in the Fileinfo component in PHP before 5429 and 55x before 5513 allows remote attackers to cause a denial of service (performance degradation) by triggering many file_printf calls The cdf_read_property_info function in cdfc in the Fileinfo component in PHP before 5429 and 55x before 5513 ...

The cdf_unpack_summary_info function in cdfc in the Fileinfo component in PHP before 5429 and 55x before 5513 allows remote attackers to cause a denial of service (performance degradation) by triggering many file_printf calls The cdf_read_property_info function in cdfc in the Fileinfo component in PHP before 5429 and 55x before 5513 ...