CVE-2014-8116

EPSS 15.9%

file - security update

發布日:2014/12/17修改日:2026/4/28

描述

The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.

受影響套件(3)

Debian/filefrom 0, < 1:5.21+15-1
Debian/filefrom 0, < 5.04-5+squeeze9
Debian/filefrom 0, < 5.11-2+deb7u7

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-8116