VDB
GCVE-110-MAGEIA-2015-30
GCVE-110-MAGEIA-2015-30
Advisory Published
Updated file packages fix security vulnerabilities:
Alexander Cherepanov reported that using the file command on a
specially-crafted ELF binary could lead to a denial of service due to
uncontrolled resource consumption while processing ELF section headers
(CVE-2014-9620, CVE-2014-9621).
As part of the fixes, several limits on aspects of the detection were added
or tightened, sometimes resulting in messages like "recursion limit exceeded"
or "too many program header sections".
To mitigate such shortcomings, these limits are controllable by a new -P,
--parameter option in the file program.
Affected Products
| Vendor | Product | Versions | Platforms |
|---|---|---|---|
| Mageia | python3 | 0 (affected), 3.3.2-13.5.mga4 (unaffected) | — |
| Mageia | file | 0 (affected), 5.16-1.10.mga4 (unaffected), 0 (affected), 5.16-1.10.mga4 (unaffected) | — |
References
Browse GCVE Records
73,443 records in the GCVE database · Updated July 18, 2026
No matching records found.
Explore Further
Investigate this vulnerability in the interactive console or download the raw GCVE record.