Critical severity9.8NVD Advisory· Published Oct 10, 2017· Updated May 13, 2026
CVE-2014-9474
CVE-2014-9474
Description
Buffer overflow in the mpfr_strtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpn_set_str.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
9- lists.fedoraproject.org/pipermail/package-announce/2015-January/147737.htmlnvdThird Party Advisory
- lists.fedoraproject.org/pipermail/package-announce/2015-January/147745.htmlnvdThird Party Advisory
- www.mpfr.org/mpfr-3.1.2/patch11nvdVendor Advisory
- www.openwall.com/lists/oss-security/2015/01/03/12nvdMailing ListThird Party Advisory
- www.securityfocus.com/bid/71542nvdThird Party AdvisoryVDB Entry
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- gforge.inria.fr/scm/viewvc.php/mpfrnvdThird Party Advisory
- security.gentoo.org/glsa/201512-06nvdThird Party Advisory
- gmplib.org/list-archives/gmp-bugs/2013-December/003267.htmlnvdNot Applicable
News mentions
0No linked articles in our index yet.