CVE-2014-2270
published 2014-03-14CVE-2014-2270: softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via…
medium4.3CVSS 3.1
AVNACMAuNCNINAP
softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | file | < file 1:5.17-1 (bookworm) | file 1:5.17-1 (bookworm) |
| file_project | file | < 5.17 | 5.17 |
| file_project | file | >= 0 < 1:5.17-1 | 1:5.17-1 |
| file_project | file | >= 0 < 1:5.17-1 | 1:5.17-1 |
| file_project | file | >= 0 < 1:5.17-1 | 1:5.17-1 |
| file_project | file | >= 0 < 1:5.17-1 | 1:5.17-1 |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| opensuse | opensuse | — | — |
| php | php | < 5.4.26 | 5.4.26 |
| php | php | >= 5.5.0 < 5.5.10 | 5.5.10 |
CVSS provenance
nvd4.3MEDIUMAV:N/AC:M/Au:N/C:N/I:N/A:P
osv4.3MEDIUM