USN-3686-1

Advisory lineage Upstream: 10 Downstream: 0

Upstream

CVE-2014-9620 CVE-2014-9621 CVE-2014-9653 CVE-2015-8865 CVE-2018-10360 UBUNTU-CVE-2014-9620

Published: 14 Jun 2018, 12:37

Last modified:22 Apr 2026, 09:45

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Jun 2018, 12:37

Published

Vulnerability first disclosed

22 Apr 2026, 09:45

Last Modified

Vulnerability information updated

Description

file vulnerabilities Alexander Cherepanov discovered that file incorrectly handled a large number of notes. An attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-9620) Alexander Cherepanov discovered that file incorrectly handled certain long strings. An attacker could use this issue to cause a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-9621) Alexander Cherepanov discovered that file incorrectly handled certain malformed ELF files. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2014-9653) It was discovered that file incorrectly handled certain magic files. An attacker could use this issue with a specially crafted magic file to cause a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2015-8865) It was discovered that file incorrectly handled certain malformed ELF files. An attacker could use this issue to cause a denial of service. (CVE-2018-10360)

Affected Systems

ubuntu•file
< 1:5.14-2ubuntu3.4 | < 1:5.25-2ubuntu1.1 | < 1:5.32-2ubuntu0.1

USN-3686-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (6)