oss-sec mailing list archives
Bugs in "file" program VU#621745
From: "CERT(R) Coordination Center" <cert () cert org>
Date: Mon, 20 Feb 2012 12:53:15 -0500
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hi folks, We recently pointed the CERT BFF at the ubiquitous "file" command and found a few bugs. While we've not proven the bugs to be exploitable, we've also not ruled out the possibility that they could be. Fixes were committed on Feb 16, 2012: https://github.com/glensc/file/commits/master Thank you, Will Dormann ============================= Vulnerability Analyst CERT Coordination Center 4500 Fifth Ave. Pittsburgh, PA 15213 1-412-268-7090 ============================= -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (GNU/Linux) iQEVAwUBT0KJh02poTkZov2QAQLBngf/ajLYJAfCtpF/KQy5/wqRghOVtTwB1O/i toZU5zE15t5MbY8Kmy85GUQsUUTH7tYlvJF83H7htD3eWCKveNM38rxB6ho6ZyPD b+m55l4VyTgGN9EJefzuqNk9spcUnsIfHSRMqT7VNdcr9+R18GQjE750FwW/nl7R KPJeoc96cA8Fvx+0kLSiYfJMmJL/SakC+4DjT9gEU774HlyMU14piny1i1a+nGAz I/KXcCHfM6xU/5po6MOH8RRgChZDzwz5Yw8m23oHc5YsxRyS1igrbEtwVFLYNbz9 izWwIqde2wNxg3HsC0CYuhd49gxBf/gsG43OGMsfhV0tqtcjUnfgEw== =zqku -----END PGP SIGNATURE-----
Current thread:
- Bugs in "file" program VU#621745 CERT(R) Coordination Center (Feb 20)
- Re: Bugs in "file" program VU#621745 Kurt Seifried (Feb 20)
- Re: Bugs in "file" program VU#621745 Florian Weimer (Feb 29)
- Re: Bugs in "file" program VU#621745 Kurt Seifried (Feb 29)
- Re: Bugs in "file" program VU#621745 Kurt Seifried (Feb 29)
- Re: Bugs in "file" program VU#621745 Florian Weimer (Feb 29)
- <Possible follow-ups>
- Re: Bugs in "file" program VU#621745 Jan Lieskovsky (Mar 20)
- Re: Re: Bugs in "file" program VU#621745 Kurt Seifried (Mar 20)
- Re: Bugs in "file" program VU#621745 Kurt Seifried (Feb 20)