128 matches found
DSA-3196-1 file - security update
Bulletin has no description...
file: Denial of service
Background The file utility attempts to identify a file’s format by scanning binary data for patterns. Description Multiple issues with the ELF parser used by the file utility have been detected and fixed. Impact A context-dependent attacker can cause Denial of Service. Workaround There is no kno...
CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
DEBIAN-CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
DEBIAN-CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
Design/Logic Flaw
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
Design/Logic Flaw
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
CVE-2014-9621
CVE-2014-9621 affects the file utility’s ELF parser (versions 5.16–5.21). A remote attacker can trigger a denial of service by supplying a crafted long string in an ELF file. Remediation: upgrade to file version 5.22 (or later) as indicated by multiple advisories (e.g., SUSE/openSUSE/Ubuntu USN)....
CVE-2014-9620
CVE-2014-9620 affects the file utility’s ELF parser (versions 5.08–5.21). A remote attacker can cause a denial of service by supplying an overly long string or large number of notes (through ELF parsing). Public references show affected ecosystems including Ubuntu (USN-3686-1), CentOS/RHEL adviso...
CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
UBUNTU-CVE-2014-9620
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes...
CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
UBUNTU-CVE-2014-9621
The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string...
Mandriva Linux Security Advisory : file (MDVSA-2015:010)
Updated file packages fix security vulnerabilities : Thomas Jarosch of Intra2net AG reported that using the file command on a specially crafted ELF binary could lead to a denial of service due to uncontrolled resource consumption CVE-2014-8116. Thomas Jarosch of Intra2net AG reported that using t...