exploitDog

CVE-2014-8116

Опубликовано: 17 дек. 2014

Источник: debian

EPSS Средний

Описание

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
file	fixed	1:5.21+15-1		package
php5	fixed	5.6.4+dfsg-2		package
php5	not-affected		wheezy	package
php5	not-affected		squeeze	package

Примечания

https://www.freebsd.org/security/advisories/FreeBSD-SA-14:28.file.asc
https://github.com/file/file/commit/b4c01141e5367f247b84dcaf6aefbb4e741842b
https://github.com/file/file/commit/d7cdad007c507e6c79f51f058dd77fab70ceb9f6
Other commits needed as well: https://www.openwall.com/lists/oss-security/2014/12/16/2

EPSS

Процентиль: 94%

0.14091

Средний

Связанные уязвимости

CVE-2014-8116

ubuntu

почти 11 лет назад

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

CVE-2014-8116

redhat

почти 11 лет назад

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

CVE-2014-8116

nvd

почти 11 лет назад

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

GHSA-633g-rmvw-w6m6

github

больше 3 лет назад

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

openSUSE-SU-2017:3067-1

suse-cvrf

почти 8 лет назад

Security update for file

EPSS

Процентиль: 94%

0.14091

Средний