Debian · Dpkg · CVE-2014-8625
**Name of the Vulnerable Software and Affected Versions**
dpkg versions prior to 1.17.22
**Description**
The issue concerns multiple format string vulnerabilities in the parse error msg function. These vulnerabilities can be exploited by remote attackers to cause a denial of service, potentially leading to a crash, and may also allow the execution of arbitrary code. The exploitation can occur through format string specifiers in either the package or architecture name.
**Recommendations**
For versions prior to 1.17.22, update to version 1.17.22 or later to resolve the issue.