22 matches found
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8905
docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...
EulerOS Virtualization for ARM 64 3.0.3.0 : file (EulerOS-SA-2019-2317)
According to the version of the file packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service...
Updated file packages fix security vulnerabilities
The updated file packages fix security vulnerabilities: docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360. CVE-2019-8905 docorenote in readelf.c in libmagic.a in file 5.35 allows remote...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8905
docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8907
The CVE-2019-8907 issue affects the file utility (libmagic, static libmagic.a) in version 5.35, where do_core_note in readelf.c triggers a stack corruption/DoS (and possible other impact). The connected Arch Linux advisory (ALAS-2019-1186) documents multiple CVEs in file, including CVE-2019-8907,...
CVE-2019-8904
CVE-2019-8904 concerns do_bid_note in readelf.c within libmagic.a (file package, 5.35) causing a stack-based buffer over-read, related to file_printf and file_vprintf. The vulnerability is described across multiple connected advisories (e.g., Cloud Foundry/USNs and Nessus entries) as impacting va...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8906
CVE-2019-8906 is a file vulnerability affecting the file utility, caused by an out-of-bounds read due to incorrect use of memcpy in do_core_note within libmagic.a (file version 5.35). Public write-ups in connected documents confirm this entry and associate it with the file parser/ELF handling pat...
CVE-2019-8904
dobidnote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintf and filevprintf...
CVE-2019-8906
docorenote in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused...
CVE-2019-8905
docorenote in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to fileprintable, a different vulnerability than CVE-2018-10360...
SUSE-SU-2018:2044-1 Security update for php53
This update for php53 fixes the following issues: The following security issue was fixed: - An out-of-bounds read in the docorenote function in readelf.c in libmagic.a allowed remote attackers to cause a denial of service via a crafted ELF file CVE-2018-10360, bsc1096984 - CVE-2018-12882:...
GLSA-201806-08 : file: Denial of service
The remote host is affected by the vulnerability described in GLSA-201806-08 file: Denial of service File does not properly utilize the docorenote function in readelf.c in libmagic.a. Impact : A remote attacker could send a specially crafted ELF file possibly resulting in a Denial of Service...
Out-of-bounds
The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...
CVE-2018-10360
The docorenote function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service out-of-bounds read and application crash via a crafted ELF file...
CVE-2018-10360
Summary (grounded): The CVE-2018-10360 issue resides in the file package (libmagic.a) where the function do_core_note in readelf.c on version 5.33 can trigger an out-of-bounds read via a crafted ELF file, causing a denial of service. The connected advisory (ALAS2-2020-1452) confirms affected Amaz...