CVE-2014-8116

Synopsis Moderate: file security and bug fix update Type/Severity Security Advisory: Moderate Topic Updated file packages that fix multiple security issues and several bugsare now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having Moderate securityimpact Commo ...

Debian Bug report logs - #773148 file: CVE-2014-8116 / CVE-2014-8117 recursion issues Package: src:file; Maintainer for src:file is Christoph Biedl <debianaxhn@manchmalin-ulmde>; Reported by: Michael Gilbert <mgilbert@debianorg> Date: Mon, 15 Dec 2014 01:18:01 UTC Severity: important Tags: confirmed, patch, upstr ...

file could be made to crash if it opened a specially crafted file ...

Multiple security issues have been found in file, a tool/library to determine a file type Processing a malformed file could result in denial of service Most of the changes are related to parsing ELF files As part of the fixes, several limits on aspects of the detection were added or tightened, sometimes resulting in messages like recursion limit ...

The ELF parser in file 508 through 521 allows remote attackers to cause a denial of service via a large number of notes (CVE-2014-9620) The ELF parser (readelfc) in file before 521 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities ...

Multiple flaws were found in the way the File Information (fileinfo) extension parsed Executable and Linkable Format (ELF) files A remote attacker could use either of these flaws to cause a PHP application using fileinfo to consume an excessive amount of system resources ...