Description
file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7345.
Remediation
References
Related Vulnerabilities
WordPress Plugin Asgaros Forum Multiple Vulnerabilities (1.15.14)
Chamilo Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2023-4226)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Multiple Vulnerabilities (4.0.3)
MySQL CVE-2018-3071 Vulnerability (CVE-2018-3071)
WordPress Plugin MiniMax-Page Layout Builder Arbitrary File Upload (1.7.1)