This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor File Project First view 2018-06-11
Product File Last view 2019-10-21
Version 5.33 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:file_project:file

Activity : Overall

Related : CVE

  Date Alert Description
9.8 2019-10-21 CVE-2019-18218

cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).

6.5 2018-06-11 CVE-2018-10360

The do_core_note function in readelf.c in libmagic.a in file 5.33 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-787 Out-of-bounds Write
50% (1) CWE-125 Out-of-bounds Read

Nessus® Vulnerability Scanner

id Description
2019-01-03 Name: The remote Fedora host is missing a security update.
File: fedora_2018-7cd597eebf.nasl - Type: ACT_GATHER_INFO
2018-08-17 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2018-1_0-0171.nasl - Type: ACT_GATHER_INFO
2018-08-17 Name: The remote PhotonOS host is missing multiple security updates.
File: PhotonOS_PHSA-2018-2_0-0080.nasl - Type: ACT_GATHER_INFO
2018-08-02 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2018-212-01.nasl - Type: ACT_GATHER_INFO
2018-06-29 Name: The remote Fedora host is missing a security update.
File: fedora_2018-b5de855e94.nasl - Type: ACT_GATHER_INFO
2018-06-25 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201806-08.nasl - Type: ACT_GATHER_INFO