CVE-2014-8117

Published: Dec 17, 2014

Modified: Aug 6, 2024

PUBLISHED

Description

softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

USN-2535-1

vendor-advisory

x_refsource_UBUNTU

71692

vdb-entry

x_refsource_BID

61944

third-party-advisory

x_refsource_SECUNIA

http://www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

x_refsource_CONFIRM

FreeBSD-SA-14:28

vendor-advisory

x_refsource_FREEBSD

RHSA-2016:0760

vendor-advisory

x_refsource_REDHAT

USN-2494-1

vendor-advisory

x_refsource_UBUNTU

http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

x_refsource_CONFIRM

https://github.com/file/file/commit/6f737ddfadb596d7d4a993f7ed2141ffd664a81c

x_refsource_CONFIRM

1031344

vdb-entry

x_refsource_SECTRACK

62081

third-party-advisory

x_refsource_SECUNIA

[oss-security] 20141216 file(1): multiple denial of service issues (resource consumption), CVE-2014-8116 and CVE-2014-8117

mailing-list

x_refsource_MLIST

http://advisories.mageia.org/MGASA-2015-0040.html

x_refsource_CONFIRM

https://github.com/file/file/blob/00cef282a902a4a6709bbbbb933ee397768caa38/ChangeLog

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2014-8117

Description

Affected Products

References