CVE-2014-9426
Severity CVSS v4.0:
Pending analysis
Type:
CWE-17
Code Errors
Publication date:
31/12/2014
Last modified:
12/04/2025
Description
The apprentice_load function in libmagic/apprentice.c in the Fileinfo component in PHP through 5.6.4 attempts to perform a free operation on a stack-based character array, which allows remote attackers to cause a denial of service (memory corruption or application crash) or possibly have unspecified other impact via unknown vectors. NOTE: this is disputed by the vendor because the standard erealloc behavior makes the free operation unreachable
Impact
Base Score 3.x
7.30
Severity 3.x
HIGH
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:php:php:*:*:*:*:*:*:*:* | 5.6.4 (including) |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://git.php.net/?p=php-src.git%3Ba%3Dcommit%3Bh%3Da72cd07f2983dc43a6bb35209dc4687852e53c09
- http://git.php.net/?p=php-src.git%3Ba%3Dcommit%3Bh%3Def89ab2f99fbd9b7b714556d4f1f50644eb54191
- http://lists.opensuse.org/opensuse-updates/2015-02/msg00079.html
- https://bugs.php.net/bug.php?id=68665
- http://git.php.net/?p=php-src.git%3Ba%3Dcommit%3Bh%3Da72cd07f2983dc43a6bb35209dc4687852e53c09
- http://git.php.net/?p=php-src.git%3Ba%3Dcommit%3Bh%3Def89ab2f99fbd9b7b714556d4f1f50644eb54191
- http://lists.opensuse.org/opensuse-updates/2015-02/msg00079.html
- https://bugs.php.net/bug.php?id=68665