Vulnerabilities

CVE-2014-3538

by Fred · 03/07/2014

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7345.

Date published : 2014-07-03

http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html

http://www.securityfocus.com/bid/68348

Similar

Tags: Cybersecurity Alert