Unrated severityNVD Advisory· Published Feb 18, 2014· Updated Apr 29, 2026
CVE-2014-1943
CVE-2014-1943
Description
Fine Free file before 5.17 allows context-dependent attackers to cause a denial of service (infinite recursion, CPU consumption, and crash) via a crafted indirect offset value in the magic of a file.
Affected products
8- cpe:2.3:a:fine_free_file_project:fine_free_file:*:*:*:*:*:*:*:*Range: <5.17
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- rhn.redhat.com/errata/RHSA-2014-1765.htmlnvdThird Party Advisory
- support.apple.com/kb/HT6443nvdThird Party Advisory
- www.debian.org/security/2014/dsa-2861nvdThird Party Advisory
- www.debian.org/security/2014/dsa-2868nvdThird Party Advisory
- www.php.net/ChangeLog-5.phpnvdRelease NotesVendor Advisory
- www.ubuntu.com/usn/USN-2123-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2126-1nvdThird Party Advisory
- github.com/glensc/file/blob/FILE5_17/ChangeLognvdRelease NotesThird Party Advisory
- lists.opensuse.org/opensuse-updates/2014-03/msg00034.htmlnvdMailing ListTool Signature
- lists.opensuse.org/opensuse-updates/2014-03/msg00037.htmlnvdMailing ListTool Signature
- mx.gw.com/pipermail/file/2014/001327.htmlnvdBroken Link
- mx.gw.com/pipermail/file/2014/001330.htmlnvdBroken Link
- mx.gw.com/pipermail/file/2014/001334.htmlnvdBroken Link
- mx.gw.com/pipermail/file/2014/001337.htmlnvdBroken Link
News mentions
0No linked articles in our index yet.