CVE-2014-1943
published 2014-02-18CVE-2014-1943: Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted…
medium5CVSS 3.1
AVNACLAuNCNINAP
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.
Affected
14 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | file | < file 1:5.17-0.1 (bookworm) | file 1:5.17-0.1 (bookworm) |
| file_project | file | >= 0 < 1:5.17-0.1 | 1:5.17-0.1 |
| file_project | file | >= 0 < 1:5.17-0.1 | 1:5.17-0.1 |
| file_project | file | >= 0 < 1:5.17-0.1 | 1:5.17-0.1 |
| file_project | file | >= 0 < 1:5.17-0.1 | 1:5.17-0.1 |
| fine_free_file_project | fine_free_file | < 5.17 | 5.17 |
| php | php | >= 5.4.0 < 5.4.26 | 5.4.26 |
| php | php | >= 5.5.0 < 5.5.10 | 5.5.10 |
CVSS provenance
nvd5.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM