17 matches found
file: stack-based buffer over-read in file_copystr in funcs.c
A flaw was found in file, a program used to identify a particular file according to the type of data contained by the file. This issue occurs when processing a specially crafted file, causing a stack-based buffer over-read, resulting in an application crash...
EulerOS 2.0 SP11 : file (EulerOS-SA-2023-3027)
According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...
EulerOS 2.0 SP11 : file (EulerOS-SA-2023-3004)
According to the versions of the file packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project. CVE-2022-48554...
EulerOS Virtualization 2.10.1 : file (EulerOS-SA-2023-3495)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
EulerOS Virtualization 2.11.1 : file (EulerOS-SA-2023-3356)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
EulerOS Virtualization 2.11.0 : file (EulerOS-SA-2023-3375)
According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: 'File' is the name of an Open Source project...
MGASA-2023-0268 Updated file packages fix security vulnerability
File before 5.43 has a stack-based buffer over-read in filecopystr in funcs.c. CVE-2022-48554...
Denial Of Service (DoS)
file is vulnerable to Denial of Service DoS attacks. This vulnerability exists due to a flaw in the way the filecopystr function in the funcs.c file copies a string from one buffer to another. An attacker can exploit this vulnerability to corrupt the stack, which could lead to a crash...
SUSE CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
Stack overflow
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2022-48554
File before 5.43 has an stack-based buffer over-read in filecopystr in funcs.c. NOTE: "File" is the name of an Open Source project...
CVE-2015-8865
The filecheckmem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service buffer overflow and application...
CVE-2015-8865
The filecheckmem function in funcs.c in file before 5.23, as used in the Fileinfo component in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5, mishandles continuation-level jumps, which allows context-dependent attackers to cause a denial of service buffer overflow and application...