Red Hat Security Advisory: file security and bug fix update
🔗 CVE IDs covered (14)
📋 Description
CVE-2014-0207 — file: cdf_read_short_sector insufficient boundary check CVE-2014-0237 — file: cdf_unpack_summary_info() excessive looping DoS CVE-2014-0238 — file: CDF property info parsing nelements infinite loop CVE-2014-3478 — file: mconvert incorrect handling of truncated pascal string size CVE-2014-3479 — file: cdf_check_stream_offset insufficient boundary check CVE-2014-3480 — file: cdf_count_chain insufficient boundary check CVE-2014-3487 — file: cdf_read_property_info insufficient boundary check CVE-2014-3538 — file: unrestricted regular expression matching CVE-2014-3587 — file: incomplete fix for CVE-2012-1571 in cdf_read_property_info CVE-2014-3710 — file: out-of-bounds read in elf note headers CVE-2014-8116 — file: multiple denial of service issues (resource consumption) CVE-2014-8117 — file: denial of service issue (resource consumption) CVE-2014-9652 — file: out of bounds read in mconvert() CVE-2014-9653 — file: malformed elf file causes access to uninitialized memory
🔗 References (25)
- selfhttps://access.redhat.com/errata/RHSA-2015:2155
- externalhttps://access.redhat.com/security/updates/classification/#moderate
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1064167
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1091842
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1094648
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1098155
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1098193
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1098222
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1104858
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1104863
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1104869
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1107544
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1128587
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1155071
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1157850
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1161911
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1161912
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1171580
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1174606
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1188599
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1190116
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1224667
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1224668
- externalhttps://bugzilla.redhat.com/show_bug.cgi?id=1255396
- selfhttps://security.access.redhat.com/data/csaf/v2/advisories/2015/rhsa-2015_2155.json