Lucene search

K
osvGoogleOSV:DLA-204-1
HistoryApr 19, 2015 - 12:00 a.m.

file - security update

2015-04-1900:00:00
Google
osv.dev
22

EPSS

0.061

Percentile

93.7%

This update fixes the following issue in the file package:

  • CVE-2014-9653
    readelf.c does not consider that pread calls sometimes read only
    a subset of the available data, which allows remote attackers to
    cause a denial of service (uninitialized memory access) or
    possibly have unspecified other impact via a crafted ELF file.