PublicDateAtUSN: 2015-03-30
Candidate: CVE-2014-9653
PublicDate: 2015-03-30 10:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9653
 http://mx.gw.com/pipermail/file/2014/001649.html
 http://www.openwall.com/lists/oss-security/2015/02/04/13
 https://ubuntu.com/security/notices/USN-3686-1
Description:
 readelf.c in file before 5.22, as used in the Fileinfo component in PHP
 before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5, does not
 consider that pread calls sometimes read only a subset of the available
 data, which allows remote attackers to cause a denial of service
 (uninitialized memory access) or possibly have unspecified other impact via
 a crafted ELF file.
Ubuntu-Description:
Notes:
 tyhicks> readelf.c not used in php5
 tyhicks> readelf.c does not use pread() in Precise or Lucid but it looks like
  short read()'s are still a problem
Bugs:
 http://bugs.gw.com/view.php?id=409
Priority: low
Discovered-by: Alexander Cherepanov
Assigned-to: mdeslaur
CVSS: 

Patches_php5:
upstream_php5: not-affected
lucid_php5: not-affected
precise_php5: not-affected
precise/esm_php5: not-affected
trusty_php5: not-affected
trusty/esm_php5: not-affected
utopic_php5: not-affected
vivid_php5: not-affected
vivid/stable-phone-overlay_php5: DNE
vivid/ubuntu-core_php5: DNE
wily_php5: not-affected
xenial_php5: DNE
yakkety_php5: DNE
zesty_php5: DNE
artful_php5: DNE
bionic_php5: DNE
cosmic_php5: DNE
disco_php5: DNE
eoan_php5: DNE
focal_php5: DNE
groovy_php5: DNE
hirsute_php5: DNE
devel_php5: DNE

Patches_file:
 upstream: https://github.com/file/file/commit/445c8fb0ebff85195be94cd9f7e1df89cade5c7f
upstream_file: needed
lucid_file: ignored (reached end-of-life)
precise_file: ignored (reached end-of-life)
precise/esm_file: ignored (end of ESM support, was needed)
trusty_file: released (1:5.14-2ubuntu3.4)
trusty/esm_file: released (1:5.14-2ubuntu3.4)
utopic_file: ignored (reached end-of-life)
vivid_file: ignored (reached end-of-life)
vivid/stable-phone-overlay_file: ignored (reached end-of-life)
vivid/ubuntu-core_file: DNE
wily_file: not-affected (1:5.22+15-2ubuntu1)
xenial_file: not-affected (1:5.25-2ubuntu1)
esm-infra/xenial_file: not-affected (1:5.25-2ubuntu1)
yakkety_file: not-affected (1:5.25-2ubuntu1)
zesty_file: not-affected (1:5.25-2ubuntu1)
artful_file: not-affected (1:5.25-2ubuntu1)
bionic_file: not-affected (1:5.25-2ubuntu1)
cosmic_file: not-affected (1:5.25-2ubuntu1)
disco_file: not-affected (1:5.25-2ubuntu1)
eoan_file: not-affected (1:5.25-2ubuntu1)
focal_file: not-affected (1:5.25-2ubuntu1)
groovy_file: not-affected (1:5.25-2ubuntu1)
hirsute_file: not-affected (1:5.25-2ubuntu1)
devel_file: not-affected (1:5.25-2ubuntu1)