Summary: | <sys-apps/file-5.15: denial of service (CPU consumption) when processing certain files (CVE-2013-7345) | ||||||
---|---|---|---|---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> | ||||
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> | ||||
Status: | RESOLVED FIXED | ||||||
Severity: | normal | CC: | base-system, sudormrfhalt | ||||
Priority: | Normal | ||||||
Version: | unspecified | ||||||
Hardware: | All | ||||||
OS: | Linux | ||||||
URL: | https://bugzilla.redhat.com/show_bug.cgi?id=1079846 | ||||||
Whiteboard: | A3 [glsa] | ||||||
Package list: | Runtime testing required: | --- | |||||
Attachments: |
|
Description
Agostino Sarubbo
2014-03-24 09:05:27 UTC
The patch from [0] is applied in the CSV repository as "limit to 100 repetitions to avoid excessive backtracking Carsten Wolff" on Mon Mar 25 14:06:55 2013 +0000 released as part of 5.15. 5.17 is already stable in the portage tree. And older versions are already cleaned. @security: Please vote on GLSA. [0] http://bugs.gw.com/view.php?id=164 New GLSA Request Filed. CVE-2013-7345 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2013-7345): The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters. Created attachment 381672 [details, diff]
file-5.11-CVE-2013-7345.patch
This issue was resolved and addressed in GLSA 201408-08 at http://security.gentoo.org/glsa/glsa-201408-08.xml by GLSA coordinator Kristian Fiskerstrand (K_F). |