CVE-2013-7345

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
Affected Products (NVD)
VendorProductVersion
christos_zoulasfile
𝑥
< 5.15
phpphp
5.4.0 ≤
𝑥
< 5.4.27
phpphp
5.5.0 ≤
𝑥
< 5.5.11
debiandebian_linux
6.0
debiandebian_linux
7.0
debiandebian_linux
8.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
file
bookworm
1:5.44-3
fixed
bullseye
1:5.39-3+deb11u1
fixed
bullseye (security)
1:5.39-3+deb11u1
fixed
sid
1:5.45-3
fixed
squeeze
not-affected
trixie
1:5.45-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
file
lucid
Fixed 5.03-5ubuntu1.3
released
precise
Fixed 5.09-2ubuntu0.4
released
quantal
ignored
saucy
Fixed 5.11-2ubuntu4.3
released
trusty
Fixed 1:5.14-2ubuntu3.1
released
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
php
RHEL 7
0:5.4.16-23.el7_0
fixed
php-bcmath
RHEL 7
0:5.4.16-23.el7_0
fixed
php-cli
RHEL 7
0:5.4.16-23.el7_0
fixed
php-common
RHEL 7
0:5.4.16-23.el7_0
fixed
php-dba
RHEL 7
0:5.4.16-23.el7_0
fixed
php-devel
RHEL 7
0:5.4.16-23.el7_0
fixed
php-embedded
RHEL 7
0:5.4.16-23.el7_0
fixed
php-enchant
RHEL 7
0:5.4.16-23.el7_0
fixed
php-fpm
RHEL 7
0:5.4.16-23.el7_0
fixed
php-gd
RHEL 7
0:5.4.16-23.el7_0
fixed
php-intl
RHEL 7
0:5.4.16-23.el7_0
fixed
php-ldap
RHEL 7
0:5.4.16-23.el7_0
fixed
php-mbstring
RHEL 7
0:5.4.16-23.el7_0
fixed
php-mysql
RHEL 7
0:5.4.16-23.el7_0
fixed
php-mysqlnd
RHEL 7
0:5.4.16-23.el7_0
fixed
php-odbc
RHEL 7
0:5.4.16-23.el7_0
fixed
php-pdo
RHEL 7
0:5.4.16-23.el7_0
fixed
php-pgsql
RHEL 7
0:5.4.16-23.el7_0
fixed
php-process
RHEL 7
0:5.4.16-23.el7_0
fixed
php-pspell
RHEL 7
0:5.4.16-23.el7_0
fixed
php-recode
RHEL 7
0:5.4.16-23.el7_0
fixed
php-snmp
RHEL 7
0:5.4.16-23.el7_0
fixed
php-soap
RHEL 7
0:5.4.16-23.el7_0
fixed
php-xml
RHEL 7
0:5.4.16-23.el7_0
fixed
php-xmlrpc
RHEL 7
0:5.4.16-23.el7_0
fixed
References
http://bugs.gw.com/view.php?id=164
http://rhn.redhat.com/errata/RHSA-2014-1765.html
http://support.apple.com/kb/HT6443
http://www.debian.org/security/2014/dsa-2873
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703993
https://github.com/file/file/commit/ef2329cf71acb59204dd981e2c6cce6c81fe467c
http://bugs.gw.com/view.php?id=164
http://rhn.redhat.com/errata/RHSA-2014-1765.html
http://support.apple.com/kb/HT6443
http://www.debian.org/security/2014/dsa-2873
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=703993
https://github.com/file/file/commit/ef2329cf71acb59204dd981e2c6cce6c81fe467c