CVE-2014-7204
exuberant-ctags - security update
EPSS 2.7%
Description
jscript.c in Exuberant Ctags 5.8 allows remote attackers to cause a denial of service (infinite loop and CPU and disk consumption) via a crafted JavaScript file.
How to fix CVE-2014-7204
To remediate CVE-2014-7204, upgrade the affected package to a fixed version below.
- Alpine/ctags—upgrade to 5.8-r5 or later
- Debian/exuberant-ctags—upgrade to 1:5.9~svn20110310-8 or later
- Debian/exuberant-ctags—upgrade to 1:5.8-3squeeze2 or later
- Debian/exuberant-ctags—upgrade to 1:5.9~svn20110310-4+deb7u1 or later
Is CVE-2014-7204 being exploited?
Low — EPSS is 2.7%, meaning exploitation activity has not been observed at scale.
Affected packages (4)
- from 0, < 5.8-r5
- from 0, < 1:5.9~svn20110310-8
- from 0, < 1:5.8-3squeeze2
- from 0, < 1:5.9~svn20110310-4+deb7u1