CVE-2014-2270
EPSS 30.8%
Description
softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable.
How to fix CVE-2014-2270
To remediate CVE-2014-2270, upgrade the affected package to a fixed version below.
- Debian/file—upgrade to 1:5.17-1 or later
Is CVE-2014-2270 being exploited?
Moderate — EPSS is 30.8%. Track this CVE but it's not at the top of the prioritisation list.
Affected packages (1)
- from 0, < 1:5.17-1