VDB
GCVE-110-MAGEIA-2014-252
GCVE-110-MAGEIA-2014-252
Advisory Published
Updated file packages fix security vulnerabilities:
A flaw was found in the way file's Composite Document Files (CDF)
format parser handle CDF files with many summary info entries. The
cdf_unpack_summary_info() function unnecessarily repeatedly read the
info from the same offset. This led to many file_printf() calls in
cdf_file_property_info(), which caused file to use an excessive amount
of CPU time when parsing a specially-crafted CDF file (CVE-2014-0237).
A flaw was found in the way file parsed property information from
Composite Document Files (CDF) files. A property entry with 0 elements
triggers an infinite loop (CVE-2014-0238).
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | file | 0 (affected), 5.16-1.3.mga4 (unaffected) | — |
| Mageia | file | 0 (affected), 5.12-8.4.mga3 (unaffected) | — |
References
Browse GCVE Records
73,161 records in the GCVE database · Updated July 16, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.