CVE-2014-8116

EPSS 15.9%

file - security update

Published: 12/17/2014Modified: 4/28/2026

Description

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

Affected packages (3)

Debian/filefrom 0, < 1:5.21+15-1
Debian/filefrom 0, < 5.04-5+squeeze9
Debian/filefrom 0, < 5.11-2+deb7u7

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8116