Lucene search
K

26 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2014-8116

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ELF parser readelf.c in file before 5.21 allows remote attackers to cause a denial of service CPU consumption or crash via a large number of 1 program or 2...

5CVSS7.2AI score0.04432EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.20 views

RHEL 5 : file (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - file: out-of-bounds read in elf note headers CVE-2014-3710 - file: denial of service issue resource...

5CVSS7.6AI score0.14013EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.26 views

Debian: Security Advisory (DLA-131-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS6.5AI score0.05926EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.64 views

K16347: Linux file utility vulnerabilities CVE-2014-8116 and CVE-2014-8117

Security Advisory Description CVE-2014-8116 The ELF parser readelf.c in file before 5.21 allows remote attackers to cause a denial of service CPU consumption or crash via a large number of 1 program or 2 section headers or 3 invalid capabilities. CVE-2014-8117 softmagic.c in file before 5.21 does...

5CVSS8.3AI score0.05926EPSS
Exploits0Affected Software23
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.41 views

Mageia: Security Advisory (MGASA-2015-0040)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.3AI score0.42593EPSS
Exploits7References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.46 views

SUSE: Security Advisory (SUSE-SU-2017:3048-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.05926EPSS
Exploits0References11
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/16 9:43 p.m.55 views

Security Bulletin: Multiple vulnerabilities in file affect IBM Security Network Protection

Summary There are multiple vulnerabilities in file that is used by IBM Security Network Protection. These vulnerabilities include CVE-2014-3538, CVE-2014-3587, CVE-2014-3710, CVE-2014-8116, CVE-2014-8117, CVE-2014-9620, and CVE-2014-9653. Vulnerability Details CVEID: CVE-2014-3538 DESCRIPTION: Fi...

7.5CVSS0.9AI score0.20237EPSS
Exploits2Affected Software1
Tenable Nessus
Tenable Nessus
added 2017/11/27 12:0 a.m.55 views

SUSE SLED12 / SLES12 Security Update : file (SUSE-SU-2017:3048-1)

The GNU file utility was updated to version 5.22. Security issues fixed : - CVE-2014-9621: The ELF parser in file allowed remote attackers to cause a denial of service via a long string. bsc913650 - CVE-2014-9620: The ELF parser in file allowed remote attackers to cause a denial of service via a...

7.5CVSS8.2AI score0.05926EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2017/11/27 12:0 a.m.52 views

openSUSE Security Update : file (openSUSE-2017-1298)

The GNU file utility was updated to version 5.22. Security issues fixed : - CVE-2014-9621: The ELF parser in file allowed remote attackers to cause a denial of service via a long string. bsc913650 - CVE-2014-9620: The ELF parser in file allowed remote attackers to cause a denial of service via a...

7.5CVSS8.2AI score0.05926EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2017/02/28 12:0 a.m.45 views

F5 Networks BIG-IP : Linux file utility vulnerabilities (K16347)

CVE-2014-8116 The ELF parser readelf.c in file before 5.21 allows remote attackers to cause a denial of service CPU consumption or crash via a large number of 1 program or 2 section headers or 3 invalid capabilities. CVE-2014-8117 softmagic.c in file before 5.21 does not properly limit recursion,...

5CVSS8.1AI score0.05926EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/05/16 12:0 a.m.54 views

OracleVM 3.3 / 3.4 : file (OVMSA-2016-0050)

The remote OracleVM system is missing necessary patches to address critical security updates : - fix CVE-2014-3538 unrestricted regular expression matching - fix 1284826 - try to read ELF header to detect corrupted one - fix 1263987 - fix bugs found by coverity in the patch - fix CVE-2014-3587...

7.5CVSS8AI score0.20237EPSS
Exploits3References10
Tenable Nessus
Tenable Nessus
added 2016/05/16 12:0 a.m.45 views

Oracle Linux 6 : file (ELSA-2016-0760)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2016-0760 advisory. - fix CVE-2014-3538 unrestricted regular expression matching - fix CVE-2014-3587 incomplete fix for CVE-2012-1571 - fix CVE-2014-3710 out-of-bounds rea...

7.5CVSS8.1AI score0.20237EPSS
Exploits3References8
Oracle linux
Oracle linux
added 2016/05/12 12:0 a.m.53 views

file security, bug fix, and enhancement update

5.04-30 - fix CVE-2014-3538 unrestricted regular expression matching 5.04-29 - fix 1284826 - try to read ELF header to detect corrupted one 5.04-28 - fix 1263987 - fix bugs found by coverity in the patch 5.04-27 - fix CVE-2014-3587 incomplete fix for CVE-2012-1571 - fix CVE-2014-3710 out-of-bound...

7.5CVSS7.5AI score0.20237EPSS
Exploits3
OpenVAS
OpenVAS
added 2015/11/24 12:0 a.m.66 views

Oracle: Security Advisory (ELSA-2015-2155)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.20805EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2015/11/20 12:0 a.m.285 views

RHEL 7 : file (RHSA-2015:2155)

Updated file packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

7.5CVSS7AI score0.20805EPSS
Exploits3References29
Tenable Nessus
Tenable Nessus
added 2015/05/20 12:0 a.m.40 views

SUSE SLED12 / SLES12 Security Update : file (SUSE-SU-2014:1730-1)

This file update fixes the following security issues : - bsc910252: multiple denial of service issues resource consumption CVE-2014-8116 - bsc910253: denial of service issue resource consumption CVE-2014-8117 Note that Tenable Network Security has extracted the preceding description block directl...

5CVSS7.9AI score0.05926EPSS
Exploits0References7
F5 Networks
F5 Networks
added 2015/04/09 12:0 a.m.44 views

SOL16347 - Linux file utility vulnerabilities CVE-2014-8116 and CVE-2014-8117

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5CVSS2AI score0.05926EPSS
Exploits0References8
Amazon
Amazon
added 2015/03/23 12:0 a.m.63 views

Medium: file

Issue Overview: The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes. CVE-2014-9620 The ELF parser readelf.c in file before 5.21 allows remote attackers to cause a denial of service CPU consumption or crash via a large number of...

7.5CVSS8.5AI score0.05926EPSS
Exploits0
OpenVAS
OpenVAS
added 2015/02/19 12:0 a.m.38 views

Fedora Update for file FEDORA-2015-2020

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.2AI score0.05926EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2015/02/18 12:0 a.m.41 views

Fedora 21 : file-5.22-2.fc21 (2015-2020)

Update to File-5.22. Fixes various CVE bugs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...

7.5CVSS8AI score0.05926EPSS
Exploits0References11
Rows per page
Query Builder