5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
Colin Percival discovered an integer overflow in file, a file type
classification tool, which may lead to the execution of arbitrary code.
For the oldstable distribution (sarge) this problem has been fixed in
version 4.12-1sarge2.
For the stable distribution (etch) this problem has been fixed in
version 4.17-5etch2.
For the unstable distribution (sid) this problem has been fixed in
version 4.21-1.
We recommend that you upgrade your file package.
CPE | Name | Operator | Version |
---|---|---|---|
file | eq | 4.17-5etch2 | |
file | eq | 4.17-5etch1 |