CVE-2014-7187
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
Off-by-one error in the read_token_word function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service (out-of-bounds array access and application crash) or possibly have unspecified other impact via deeply nested for loops, aka the "word_lineno" issue.
Affected Platforms (CPE)
📦
Gnu
Bash
= 1.14.0📦
Gnu
Bash
= 1.14.1📦
Gnu
Bash
= 1.14.2📦
Gnu
Bash
= 1.14.3📦
Gnu
Bash
= 1.14.4📦
Gnu
Bash
= 1.14.5📦
Gnu
Bash
= 1.14.6📦
Gnu
Bash
= 1.14.7📦
Gnu
Bash
= 2.0📦
Gnu
Bash
= 2.01📦
Gnu
Bash
= 2.01.1📦
Gnu
Bash
= 2.02📦
Gnu
Bash
= 2.02.1📦
Gnu
Bash
= 2.03📦
Gnu
Bash
= 2.04📦
Gnu
Bash
= 2.05📦
Gnu
Bash
= 2.05📦
Gnu
Bash
= 2.05📦
Gnu
Bash
= 3.0📦
Gnu
Bash
= 3.0.16📦
Gnu
Bash
= 3.1📦
Gnu
Bash
= 3.2📦
Gnu
Bash
= 3.2.48📦
Gnu
Bash
= 4.0📦
Gnu
Bash
= 4.0📦
Gnu
Bash
= 4.1📦
Gnu
Bash
= 4.2📦
Gnu