MDVSA-2012:035 -- Mandriva fileID: oval:org.secpod.oval:def:302838 | Date: (C)2012-12-11 (M)2023-12-07 |
Class: PATCH | Family: unix |
Multiple out-of heap-based buffer read flaws and invalid pointer dereference flaws were found in the way file, utility for determining of file types processed header section for certain Composite Document Format files. A remote attacker could provide a specially-crafted CDF file, which once inspected by the file utility of the victim would lead to file executable crash . The updated packages for Mandriva Linux 2011 have been upgraded to the 5.11 version and the packages for Mandriva Linux 2010.2 has been patched to correct these issues.
Platform: |
Mandriva Linux 2011.0 |
Mandriva Linux 2010.1 |