Bug 828021 (CVE-2013-4636) - VUL-0: CVE-2013-4636: php54: denial of service via mget function in libmagic/softmagic.c
Summary: VUL-0: CVE-2013-4636: php54: denial of service via mget function in libmagic/...
Status: RESOLVED INVALID
Alias: CVE-2013-4636
Product: SUSE Security Incidents
Classification: Novell Products
Component: Incidents (show other bugs)
Version: unspecified
Hardware: Other Other
: P3 - Medium : Normal
Target Milestone: ---
Assignee: Petr Gajdos
QA Contact: Security Team bot
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2013-07-03 16:04 UTC by Marcus Meissner
Modified: 2013-07-04 08:37 UTC (History)
2 users (show)

See Also:
Found By: ---
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Marcus Meissner 2013-07-03 16:04:34 UTC 
is public, via cve db

CVE-2013-4636

The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via an MP3 file that triggers incorrect MIME type detection during access to an finfo object. 

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4636


    CONFIRM:http://www.php.net/ChangeLog-5.php
    CONFIRM:https://bugs.php.net/bug.php?id=64830
Comment 1 Marcus Meissner 2013-07-03 16:05:07 UTC 
do we have php 5.4 anywhere? opensuse?
Comment 2 Swamp Workflow Management 2013-07-03 22:00:56 UTC 
bugbot adjusting priority
Comment 3 Petr Gajdos 2013-07-04 06:53:18 UTC 
(In reply to comment #1)
> do we have php 5.4 anywhere? opensuse?

No :-).
Comment 4 Petr Gajdos 2013-07-04 06:55:40 UTC 
From the php bug:

"
5.4.14 works fine, 5.4.15 crashes.

I bisected it down to 10367fa7c6a4a2cf9bee02d8905e284185428f09.
"

It seems that we can safely close.
Comment 5 Petr Gajdos 2013-07-04 07:06:06 UTC 
Nevertheless I will try to run testcase for 5.3.8 and 5.3.17.
Comment 6 Petr Gajdos 2013-07-04 07:59:43 UTC 
5.3.8 and 5.3.17 doesn't crash. Factory has 5.4.16. No our distribution is affected.
Comment 7 Marcus Meissner 2013-07-04 08:37:11 UTC 
thanks! :)