ALAS-2015-497 --- file python26-magic python27-magicID: oval:org.secpod.oval:def:1200084 | Date: (C)2015-12-28 (M)2024-02-19 |
Class: PATCH | Family: unix |
The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes. The ELF parser in file before 5.21 allows remote attackers to cause a denial of service via a large number of program or section headers or invalid capabilities. It was reported that a malformed elf file can cause file urility to access invalid memory. The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string. softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service via unspecified vectors
Platform: |
Amazon Linux AMI |
Product: |
file |
python26-magic |
python27-magic |