CVE-2015-8865

Summary

CVE	CVE-2015-8865
State	PUBLISHED
Assigner	mitre
Source Priority	CVE Program / NVD first with legacy fallback
Published	2016-05-20 10:59:00 UTC
Updated	2026-05-06 22:30:45 UTC
Description	The file_check_mem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service (buffer overflow and application crash) or possibly execute arbitrary code via a crafted magic file.

Risk And Classification

Primary CVSS: v3.0 7.3 HIGH from [email protected]

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

Problem Types: CWE-119 | n/a

Version	Source	Type	Score	Severity	Vector
3.0	[email protected]	Primary	7.3	HIGH	`CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H`
2.0	[email protected]	Primary	7.5		`AV:N/AC:L/Au:N/C:P/I:P/A:P`

CVSS v3.0 Breakdown

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

CVSS v2.0 Breakdown

Access Vector

Network

Access Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Apple	Mac Os X	All	All	All	All
Application	Php	Php	5.6.0	alpha1	All	All
Application	Php	Php	5.6.0	alpha2	All	All
Application	Php	Php	5.6.0	alpha3	All	All
Application	Php	Php	5.6.0	alpha4	All	All
Application	Php	Php	5.6.0	alpha5	All	All
Application	Php	Php	5.6.0	beta1	All	All
Application	Php	Php	5.6.0	beta2	All	All
Application	Php	Php	5.6.0	beta3	All	All
Application	Php	Php	5.6.0	beta4	All	All
Application	Php	Php	5.6.1	All	All	All
Application	Php	Php	5.6.10	All	All	All
Application	Php	Php	5.6.11	All	All	All
Application	Php	Php	5.6.12	All	All	All
Application	Php	Php	5.6.13	All	All	All
Application	Php	Php	5.6.14	All	All	All
Application	Php	Php	5.6.15	All	All	All
Application	Php	Php	5.6.16	All	All	All
Application	Php	Php	5.6.17	All	All	All
Application	Php	Php	5.6.18	All	All	All
Application	Php	Php	5.6.19	All	All	All
Application	Php	Php	5.6.2	All	All	All
Application	Php	Php	5.6.3	All	All	All
Application	Php	Php	5.6.4	All	All	All
Application	Php	Php	5.6.5	All	All	All
Application	Php	Php	5.6.6	All	All	All
Application	Php	Php	5.6.7	All	All	All
Application	Php	Php	5.6.8	All	All	All
Application	Php	Php	5.6.9	All	All	All
Application	Php	Php	7.0.0	All	All	All
Application	Php	Php	7.0.1	All	All	All
Application	Php	Php	7.0.2	All	All	All
Application	Php	Php	7.0.3	All	All	All
Application	Php	Php	7.0.4	All	All	All
Application	Php	Php	All	All	All	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
Document Display \| HPE Support Center	af854a3a-2127-422b-91ae-364da2661108	h20566.www2.hpe.com
USN-3686-2: file vulnerabilities \| Ubuntu security notices	af854a3a-2127-422b-91ae-364da2661108	usn.ubuntu.com
oss-security - Re: CVE request: PHP issues fixed in 7.0.5, 5.6.20 and 5.5.34 releases	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
PHP 'finfo_open()' Function Denial of Service Vulnerability	af854a3a-2127-422b-91ae-364da2661108	www.securityfocus.com
[security-announce] openSUSE-SU-2016:1167-1: important: Security update	af854a3a-2127-422b-91ae-364da2661108	lists.opensuse.org
About the security content of OS X El Capitan v10.11.5 and Security Update 2016-003 - Apple Support	af854a3a-2127-422b-91ae-364da2661108	support.apple.com
USN-2952-2: PHP regression \| Ubuntu	af854a3a-2127-422b-91ae-364da2661108	www.ubuntu.com
208.43.231.11 Git - php-src.git/commit	af854a3a-2127-422b-91ae-364da2661108	git.php.net
Debian -- Security Information -- DSA-3560-1 php5	af854a3a-2127-422b-91ae-364da2661108	www.debian.org
PHP: PHP 5 ChangeLog	af854a3a-2127-422b-91ae-364da2661108	www.php.net
PHP: Multiple vulnerabilities (GLSA 201611-22) — Gentoo security	af854a3a-2127-422b-91ae-364da2661108	security.gentoo.org
PHP: PHP 7 ChangeLog	af854a3a-2127-422b-91ae-364da2661108	www.php.net
USN-2952-1: PHP vulnerabilities \| Ubuntu	af854a3a-2127-422b-91ae-364da2661108	www.ubuntu.com
file: Multiple vulnerabilities (GLSA 201701-42) — Gentoo security	af854a3a-2127-422b-91ae-364da2661108	security.gentoo.org
APPLE-SA-2016-05-16-4 OS X El Capitan 10.11.5 and Security Update 2016-003	af854a3a-2127-422b-91ae-364da2661108	lists.apple.com
PR/454: Fix memory corruption when the continuation level jumps by mo… · file/file@6713ca4 · GitHub	af854a3a-2127-422b-91ae-364da2661108	github.com
PHP :: Sec Bug #71527 :: Buffer over-write in finfo_open with malformed magic file.	af854a3a-2127-422b-91ae-364da2661108	bugs.php.net	Exploit
USN-3686-1: file vulnerabilities \| Ubuntu security notices \| Ubuntu	af854a3a-2127-422b-91ae-364da2661108	usn.ubuntu.com
bugs.gw.com/view.php	af854a3a-2127-422b-91ae-364da2661108	bugs.gw.com
Red Hat Customer Portal	af854a3a-2127-422b-91ae-364da2661108	rhn.redhat.com
208.43.231.11 Git - php-src.git/commit	MITRE	git.php.net
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

710357 Gentoo Linux file Multiple Vulnerabilities (GLSA 201701-42)