VDB

GCVE-110-MAGEIA-2014-142

GCVE-110-MAGEIA-2014-142
Advisory Published
Vulnetix · Advisory published March 31, 2014
The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters (CVE-2013-7345).

Affected Products

VendorProductVersionsPlatforms
Mageiamediawiki-math1.2.0-1.1.mga4 (unaffected), 0 (affected)
Mageiamediawiki-ldapauthentication0 (affected), 2.1.0-1.mga3 (unaffected)
Mageiamediawiki0 (affected), 1.23.1-1.mga4 (unaffected)
Mageiamediawiki0 (affected), 1.23.1-1.mga3 (unaffected)
Mageiafile0 (affected), 5.12-8.3.mga3 (unaffected), 0 (affected), 5.12-8.3.mga3 (unaffected)
Mageiamediawiki-math0 (affected), 1.2.0-1.1.mga3 (unaffected)
Mageiamediawiki-ldapauthentication0 (affected), 2.1.0-1.mga4 (unaffected)

Browse GCVE Records

73,053 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›