Unrated severityNVD Advisory· Published Mar 14, 2014· Updated Jun 17, 2026
CVE-2014-2270
CVE-2014-2270
Description
softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
16cpe:2.3:a:file_project:file:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:file_project:file:*:*:*:*:*:*:*:*range: <5.17
- (no CPE)range: <5.17
cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*+ 3 more
- cpe:2.3:o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:12.10:*:*:*:*:*:*:*
- cpe:2.3:o:canonical:ubuntu_linux:13.10:*:*:*:*:*:*:*
- Range: <5.17
- osv-coords2 versionspkg:rpm/opensuse/php5&distro=openSUSE%20Tumbleweedpkg:rpm/opensuse/php7&distro=openSUSE%20Tumbleweed
< 5.6.28-1.1+ 1 more
- (no CPE)range: < 5.6.28-1.1
- (no CPE)range: < 7.0.14-1.4
Patches
Vulnerability mechanics
References
15- bugs.gw.com/view.phpnvdBroken LinkPatch
- seclists.org/oss-sec/2014/q1/473nvdMailing ListPatchThird Party Advisory
- seclists.org/oss-sec/2014/q1/504nvdMailing ListPatchThird Party Advisory
- seclists.org/oss-sec/2014/q1/505nvdMailing ListPatchThird Party Advisory
- github.com/file/file/commit/447558595a3650db2886cd2f416ad0beba965801nvdPatchThird Party Advisory
- lists.opensuse.org/opensuse-updates/2014-03/msg00034.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-updates/2014-03/msg00037.htmlnvdMailing ListThird Party Advisory
- lists.opensuse.org/opensuse-updates/2014-03/msg00084.htmlnvdMailing ListThird Party Advisory
- rhn.redhat.com/errata/RHSA-2014-1765.htmlnvdThird Party Advisory
- support.apple.com/kb/HT6443nvdThird Party Advisory
- www.debian.org/security/2014/dsa-2873nvdThird Party Advisory
- www.php.net/ChangeLog-5.phpnvdRelease NotesVendor Advisory
- www.ubuntu.com/usn/USN-2162-1nvdThird Party Advisory
- www.ubuntu.com/usn/USN-2163-1nvdThird Party Advisory
- security.gentoo.org/glsa/201503-08nvdThird Party Advisory
News mentions
0No linked articles in our index yet.