You are here
Home > Preporuke > DoS ranjivost programskog paketa ctags

DoS ranjivost programskog paketa ctags

  • Detalji os-a: FED
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2014-10-01 03:28:04

Name : ctags
Product : Fedora 20
Version : 5.8
Release : 16.fc20
Summary : A C programming language indexing and/or cross-reference tool
Description :
Ctags generates an index (or tag) file of C language objects found in
C source and header files. The index makes it easy for text editors or
other utilities to locate the indexed items. Ctags can also generate a
cross reference file which lists information about the various objects
found in a set of C language files in human readable form. Exuberant
Ctags improves on ctags because it can find all types of C language tags,
including macro definitions, enumerated values (values inside enum{…}),
function and method definitions, enum/struct/union tags, external
function prototypes, typedef names and variable declarations. Exuberant
Ctags is far less likely to be fooled by code containing #if preprocessor
conditional constructs than ctags. Exuberant ctags supports output of
Emacs style TAGS files and can be used to print out a list of selected
objects found in source files.

Install ctags if you are going to use your system for C programming.

Update Information:

A denial of service issue was discovered in ctags. This could lead to excessive CPU and disk space consumption.

This update resolves this issue

* Tue Sep 30 2014 Than Ngo <> – 5.8-16
– CVE-2014-7204, denial of service issue
* Sat Aug 16 2014 Fedora Release Engineering <> – 5.8-15
– Rebuilt for
* Sat Jun 7 2014 Fedora Release Engineering <> – 5.8-14
– Rebuilt for
* Mon Apr 14 2014 Jaromir Capik <> – 5.8-13
– Fixing format-security flaws (#1037028)

[ 1 ] Bug #1147339 – CVE-2014-7204 ctags: possible denial of service

This update can be installed with the “yum” update program. Use
su -c ‘yum update ctags’ at the command line.
For more information, refer to “Managing Software with yum”,
available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list

AutorTomislav Protega
Cert idNCERT-REF-2014-10-0013-ADV
ID izvornikaFEDORA-2014-11924
More in Preporuke
Sigurnosni propust programskog paketa nginx

Otkriven je sigurnosni propust u programskom paketu nginx za Fedoru. Radi se o problemu "virtual host confusion" koji jednom izvoru...