CVE-2014-1943

EPSS 24.9%

php5 - denial of service

Published: 2/18/2014Modified: 4/28/2026

Description

Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.

Affected packages (3)

Debian/filefrom 0, < 1:5.17-0.1
Debian/filefrom 0, < 5.04-5+squeeze3
Debian/php5from 0, < 5.3.3-7+squeeze19

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-1943