[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2014-0324":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-05T08:55:32.481Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":20,"duplicates":21,"related":22,"reserved_at":9,"published_at":26,"modified_at":27,"state":9,"summary":28,"references_raw":30,"kevs":63,"epss":9,"epss_history":64,"metrics":65,"affected":66},"MGASA-2014-0324","Updated php packages fix security vulnerabilities\n\nUse-after-free vulnerability in ext/spl/spl_array.c in the SPL component in\nPHP through 5.5.14 allows context-dependent attackers to cause a denial of\nservice or possibly have unspecified other impact via crafted ArrayIterator\nusage within applications in certain web-hosting environments (CVE-2014-4698).\n\nUse-after-free vulnerability in ext/spl/spl_dllist.c in the SPL component in\nPHP through 5.5.14 allows context-dependent attackers to cause a denial of\nservice or possibly have unspecified other impact via crafted iterator usage\nwithin applications in certain web-hosting environments (CVE-2014-4670).\n\nfile before 5.19 does not properly restrict the amount of data read during\na regex search, which allows remote attackers to cause a denial of service\n(CPU consumption) via a crafted file that triggers backtracking during\nprocessing of an awk rule, due to an incomplete fix for CVE-2013-7345\n(CVE-2014-3538).\n\nThe php packages have been updated to 5.4.31 for Mageia 3 and 5.5.14 for\nMageia 4, and additional patches have been added to fix these issues and\nseveral other bugs.\n\nAlso, php-apc has been rebuilt against the updated PHP versions and the\nphp-timezonedb package has been updated to the latest version, 2014.5.\n\nAdditionally, the jsonc extension has been upgraded to the 1.3.6\nversion.\n",null,[],[],[],[14,16,18],{"_key":15},"CVE-2014-3538",{"_key":17},"CVE-2014-4670",{"_key":19},"CVE-2014-4698",[],[],[23,24,25],{"_key":15},{"_key":17},{"_key":19},"2014-08-08T11:23:49Z","2026-04-16T06:22:23.651956048Z",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[31,37,42,47,51,55,59],{"url":32,"sources":33,"tags":35},"https://advisories.mageia.org/MGASA-2014-0324.html",[34],"osv_mageia",[36],"Advisory",{"url":38,"sources":39,"tags":40},"https://bugs.mageia.org/show_bug.cgi?id=13796",[34],[41],"REPORT",{"url":43,"sources":44,"tags":45},"http://php.net/ChangeLog-5.php#5.4.31",[34],[41,46],"WEB",{"url":48,"sources":49,"tags":50},"http://php.net/ChangeLog-5.php#5.5.15",[34],[41,46],{"url":52,"sources":53,"tags":54},"http://pecl.php.net/package-changelog.php?package=jsonc&release=1.3.6",[34],[41,46],{"url":56,"sources":57,"tags":58},"http://lists.opensuse.org/opensuse-updates/2014-07/msg00035.html",[34],[41,46],{"url":60,"sources":61,"tags":62},"http://www.mandriva.com/en/support/security/advisories/mbs1/MDVSA-2014:149/",[34],[41,36],[],[],[],[67,79,85,91,97,102,107],{"ecosystem":68,"name":69,"vendor":70,"product":69,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":69,"source":9,"versions":72},"Mageia","php","mageia","rpm",[73],{"version":74,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":77,"version_end_type":78,"fixed_in":9},"lt5_4_31_1_2_mga3",true,"ecosystem","5.4.31-1.2.mga3","excluding",{"ecosystem":68,"name":80,"vendor":70,"product":80,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":80,"source":9,"versions":81},"php-apc",[82],{"version":83,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":84,"version_end_type":78,"fixed_in":9},"lt3_1_14_7_11_mga3","3.1.14-7.11.mga3",{"ecosystem":68,"name":86,"vendor":70,"product":86,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":86,"source":9,"versions":87},"php-gd-bundled",[88],{"version":89,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":90,"version_end_type":78,"fixed_in":9},"lt5_4_31_1_mga3","5.4.31-1.mga3",{"ecosystem":68,"name":92,"vendor":70,"product":92,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":92,"source":9,"versions":93},"php-timezonedb",[94],{"version":95,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":96,"version_end_type":78,"fixed_in":9},"lt2014_5_1_mga3","2014.5-1.mga3",{"ecosystem":68,"name":69,"vendor":70,"product":69,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":69,"source":9,"versions":98},[99],{"version":100,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":101,"version_end_type":78,"fixed_in":9},"lt5_5_15_1_1_mga4","5.5.15-1.1.mga4",{"ecosystem":68,"name":80,"vendor":70,"product":80,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":80,"source":9,"versions":103},[104],{"version":105,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":106,"version_end_type":78,"fixed_in":9},"lt3_1_15_4_6_mga4","3.1.15-4.6.mga4",{"ecosystem":68,"name":92,"vendor":70,"product":92,"cpe_part":9,"purl_type":71,"purl_namespace":70,"purl_name":92,"source":9,"versions":108},[109],{"version":110,"is_range":75,"range_type":76,"version_start":9,"version_start_type":9,"version_end":111,"version_end_type":78,"fixed_in":9},"lt2014_5_1_mga4","2014.5-1.mga4"]