CVE-2014-9621

Опубликовано: 21 янв. 2015

Источник: debian

EPSS Низкий

Описание

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

Пакет	Статус	Версия исправления	Релиз	Тип
file	fixed	1:5.21+15-1		package
file	not-affected		wheezy	package
file	not-affected		squeeze	package
php5	fixed	5.6.5+dfsg-1		package
php5	not-affected		wheezy	package
php5	not-affected		squeeze	package

Report: http://mx.gw.com/pipermail/file/2014/001654.html
Fix: https://github.com/file/file/commit/65437cee25199dbd385fb35901bc0011e164276c
Introduced by: https://github.com/file/file/commit/c8451af8ab0c2e2a93ce93b9c68257d31576cc85 (5.16)
readelf.c has been removed in PHP in 5.6.5, see http://php.net/ChangeLog-5.php#5.6.5

EPSS

Процентиль: 79%

0.01286

Низкий

CVE-2014-9621

ubuntu

около 11 лет назад

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

CVE-2014-9621

redhat

около 11 лет назад

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

CVE-2014-9621

nvd

около 11 лет назад

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

GHSA-37mq-9v9g-wmfw

github

больше 3 лет назад

The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string.

openSUSE-SU-2017:3067-1

suse-cvrf

около 8 лет назад

Security update for file

EPSS

Процентиль: 79%

0.01286

Низкий