The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.
Name | Vendor | Start Version | End Version |
---|---|---|---|
File | File_project | 5.20 (including) | 5.20 (including) |
Freebsd | Freebsd | * | * |
Red Hat Enterprise Linux 6 | RedHat | file-0:5.04-30.el6 | * |
Red Hat Enterprise Linux 7 | RedHat | file-0:5.11-31.el7 | * |
File | Ubuntu | devel | * |
File | Ubuntu | lucid | * |
File | Ubuntu | precise | * |
File | Ubuntu | trusty | * |
File | Ubuntu | utopic | * |