Lucene search

K

Gentoo FoundationGLSA-200703-26

HistoryMar 30, 2007 - 12:00 a.m.

file: Integer underflow

2007-03-3000:00:00

Gentoo Foundation

security.gentoo.org

20

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.7%

Background

file is a utility that guesses a file format by scanning binary data for patterns.

Description

Jean-Sebastien Guay-Leroux reported an integer underflow in file_printf function.

Impact

A remote attacker could entice a user to run the “file” program on a specially crafted file that would trigger a heap-based buffer overflow possibly leading to the execution of arbitrary code with the rights of the user running “file”. Note that this vulnerability could be also triggered through an automatic file scanner like amavisd-new.

Workaround

There is no known workaround at this time.

Resolution

Since file is a system package, all Gentoo users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose "&gt;=sys-apps/file-4.20"

OSVersionArchitecturePackageVersionFilename
Gentooanyallsys-apps/file< 4.20UNKNOWN

9.3 High

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.049 Low

EPSS

Percentile

92.7%

Related for GLSA-200703-26

nessus20 openvas16 slackware1 cve2 cert1 debian2 fedora1 ubuntu1 ubuntucve2 freebsd_advisory1 oraclelinux1 redhat2 prion2 freebsd1 centos2 debiancve2 suse1 veracode1 securityvulns1 gentoo2 seebug1