Lucene search
PRIOn knowledge basePRION:CVE-2014-1943HistoryFeb 18, 2014 - 7:55 p.m.
Double free
2014-02-1819:55:00
PRIOn knowledge base
www.prio-n.com
8
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 13.10 | |
| ubuntu_linux | eq | 12.10 | |
| ubuntu_linux | eq | 10.04 | |
| ubuntu_linux | eq | 12.04 | |
| debian_linux | eq | 7.0 | |
| debian_linux | eq | 6.0 | |
| fine_free_file | lt | 5.17 | |
| php | ge | 5.5.0 | |
| php | lt | 5.5.10 | |
| php | ge | 5.4.0 |
References
lists.opensuse.org/opensuse-updates/2014-03/msg00034.html
lists.opensuse.org/opensuse-updates/2014-03/msg00037.html
mx.gw.com/pipermail/file/2014/001327.html
mx.gw.com/pipermail/file/2014/001330.html
mx.gw.com/pipermail/file/2014/001334.html
mx.gw.com/pipermail/file/2014/001337.html
rhn.redhat.com/errata/RHSA-2014-1765.html
support.apple.com/kb/HT6443
www.debian.org/security/2014/dsa-2861
www.debian.org/security/2014/dsa-2868
www.php.net/ChangeLog-5.php
www.ubuntu.com/usn/USN-2123-1
www.ubuntu.com/usn/USN-2126-1
github.com/glensc/file/blob/FILE5_17/ChangeLog
Related
nessus
nessus
FreeBSD : file -- denial of service (815dbcf9-a2d6-11e3-8088-002590860428)
2014-03-04 00:00:00
Debian DSA-2868-1 : php5 - denial of service
2014-03-03 00:00:00
GLSA-201403-03 : file: Denial of Service
2014-03-14 00:00:00
osv
osv
php5 - denial of service
2014-03-02 00:00:00
file - denial of service
2014-02-16 00:00:00
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0092)
2022-01-28 00:00:00
Gentoo Security Advisory GLSA 201403-03
2015-09-29 00:00:00
Fedora Update for file FEDORA-2014-2739
2014-02-25 00:00:00
mageia
mageia
Updated file package fixes security vulnerability
2014-02-22 23:10:59
Updated php packages fix security vulnerabilities
2014-04-04 21:33:24
Updated php packages fix security vulnerabilities
2014-04-04 16:08:18
freebsd
freebsd
file -- denial of service
2014-02-16 00:00:00
FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3)
2014-06-24 00:00:00
amazon
amazon
securityvulns
securityvulns
[SECURITY] [DSA 2861-1] file security update
2014-02-18 00:00:00
[ MDVSA-2014:059 ] php
2014-03-18 00:00:00
file utility / libmagic / PHP DoS
2014-05-04 00:00:00
debian
debian
[SECURITY] [DSA 2861-1] file security update
2014-02-16 14:09:45
[SECURITY] [DSA 2868-1] php5 security update
2014-03-02 19:18:49
[SECURITY] [DSA 2868-1] php5 security update
2014-03-02 19:18:49
slackware
slackware
[slackware-security] php
2014-03-16 03:31:21
ubuntucve
ubuntucve
CVE-2014-1943
2014-02-18 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: file-5.11-12.fc19
2014-03-04 06:44:00
[SECURITY] Fedora 20 Update: file-5.14-15.fc20
2014-02-23 08:38:00
[SECURITY] Fedora 20 Update: file-5.14-17.fc20
2014-03-12 12:31:06
cve
cve
CVE-2014-1943
2014-02-18 19:55:04
gentoo
gentoo
file: Denial of service
2014-03-13 00:00:00
PHP: Multiple vulnerabilities
2014-08-29 00:00:00
debiancve
debiancve
CVE-2014-1943
2014-02-18 19:55:04
checkpoint_advisories
checkpoint_advisories
PHP Fileinfo Call Stack Exhaustion Denial of Service (CVE-2014-1943)
2014-05-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:04:17
Denial Of Service (DoS)
2019-05-02 05:04:17
Denial Of Service (DoS)
2019-05-02 05:04:17
cvelist
cvelist
CVE-2014-1943
2014-02-18 19:00:00
nvd
nvd
CVE-2014-1943
2014-02-18 19:55:04
ubuntu
ubuntu
file vulnerabilities
2014-02-26 00:00:00
PHP vulnerabilities
2014-03-03 00:00:00
f5
f5
SOL15689 - Fine Free file vulnerabilites CVE-2014-1943 and CVE-2014-2270
2014-10-09 00:00:00
K15689 : Fine Free file vulnerabilites CVE-2014-1943 and CVE-2014-2270
2014-10-09 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:16.file
2014-06-24 00:00:00
centos
centos
file, python security update
2014-10-20 18:08:44
php, php53 security update
2014-08-06 14:53:37
redhat
redhat
(RHSA-2014:1606) Moderate: file security and bug fix update
2014-10-14 00:00:00
(RHSA-2014:1012) Moderate: php53 and php security update
2014-08-06 00:00:00
(RHSA-2014:1765) Important: php54-php security update
2014-10-30 00:00:00
oraclelinux
oraclelinux
file security and bug fix update
2014-10-15 00:00:00
php53 and php security update
2014-08-06 00:00:00