SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   file Vendors:   Darwin, Ian F.
(Red Hat Issues Fix for file) FreeBSD file(1) and libmagic(3) File Processing Flaws Let Remote Users Deny Service
SecurityTracker Alert ID:  1035856
SecurityTracker URL:  http://securitytracker.com/id/1035856
CVE Reference:   CVE-2014-3710, CVE-2014-8116, CVE-2014-8117   (Links to External Site)
Date:  May 11 2016
Impact:   Denial of service via local system
Fix Available:  Yes  Vendor Confirmed:  Yes  

Description:   A vulnerability was reported in FreeBSD. A local user can cause denial of service conditions. file is affected.

A local user can trigger several flaws in the ELF parser to cause the libmagic(3) library (used by the file(1) utility) to consume excessive resources or crash.

Thomas Jarosch of Intra2net AG reported these vulnerabilities.

Impact:   A local user can cause the target system to consume excessive resources or crash.
Solution:   Red Hat has issued a fix for file.

The Red Hat advisory is available at:

https://rhn.redhat.com/errata/RHSA-2016-0760.html

Vendor URL:  rhn.redhat.com/errata/RHSA-2016-0760.html (Links to External Site)
Cause:   State error
Underlying OS:  Linux (Red Hat Enterprise)
Underlying OS Comments:  6

Message History:   This archive entry is a follow-up to the message listed below.
Dec 11 2014 FreeBSD file(1) and libmagic(3) File Processing Flaws Let Remote Users Deny Service



 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC