file vulnerability

ID USN-439-1
Type ubuntu
Reporter Ubuntu
Modified 2007-03-22T00:00:00


Jean-Sebastien Guay-Leroux discovered that “file” did not correctly check the size of allocated heap memory. If a user were tricked into examining a specially crafted file with the “file” utility, a remote attacker could execute arbitrary code with user privileges.