Debian File vulnerabilities

CVE-2014-0237 [MEDIUM] CVE-2014-0237: file - The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP b... The cdf_unpack_summary_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (performance degradation) by triggering many file_printf calls. Scope: local bookworm: resolved (fixed in 1:5.19-1) bullseye: resolved (fixed in 1:5.19-1) forky: resolved (fixed in 1:5.19-1) sid: resol

CVE-2014-3480 [MEDIUM] CVE-2014-3480: file - The cdf_count_chain function in cdf.c in file before 5.19, as used in the Filein... The cdf_count_chain function in cdf.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, does not properly validate sector-count data, which allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. Scope: local bookworm: resolved (fixed in 1:5.19-1) bullseye: resolved (fixed in 1:

CVE-2014-2270 [MEDIUM] CVE-2014-2270: file - softmagic.c in file before 5.17 and libmagic allows context-dependent attackers ... softmagic.c in file before 5.17 and libmagic allows context-dependent attackers to cause a denial of service (out-of-bounds memory access and crash) via crafted offsets in the softmagic of a PE executable. Scope: local bookworm: resolved (fixed in 1:5.17-1) bullseye: resolved (fixed in 1:5.17-1) forky: resolved (fixed in 1:5.17-1) sid: resolved (fixed in 1:5.17-1) trix

CVE-2014-0238 [MEDIUM] CVE-2014-0238: file - The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP be... The cdf_read_property_info function in cdf.c in the Fileinfo component in PHP before 5.4.29 and 5.5.x before 5.5.13 allows remote attackers to cause a denial of service (infinite loop or out-of-bounds memory access) via a vector that (1) has zero length or (2) is too long. Scope: local bookworm: resolved (fixed in 1:5.19-1) bullseye: resolved (fixed in 1:5.19-1) forky:

CVE-2014-3538 [MEDIUM] CVE-2014-3538: file - file before 5.19 does not properly restrict the amount of data read during a reg... file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-7345. Scope: local bookworm: resolved (fixed in 1

CVE-2014-3478 [MEDIUM] CVE-2014-3478: file - Buffer overflow in the mconvert function in softmagic.c in file before 5.19, as ... Buffer overflow in the mconvert function in softmagic.c in file before 5.19, as used in the Fileinfo component in PHP before 5.4.30 and 5.5.x before 5.5.14, allows remote attackers to cause a denial of service (application crash) via a crafted Pascal string in a FILE_PSTRING conversion. Scope: local bookworm: resolved (fixed in 1:5.19-1) bullseye: resolved (fixed in 1:

CVE-2014-9621 [MEDIUM] CVE-2014-9621: file - The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a deni... The ELF parser in file 5.16 through 5.21 allows remote attackers to cause a denial of service via a long string. Scope: local bookworm: resolved (fixed in 1:5.21+15-1) bullseye: resolved (fixed in 1:5.21+15-1) forky: resolved (fixed in 1:5.21+15-1) sid: resolved (fixed in 1:5.21+15-1) trixie: resolved (fixed in 1:5.21+15-1)

CVE-2014-3587 [MEDIUM] CVE-2014-3587: file - Integer overflow in the cdf_read_property_info function in cdf.c in file through... Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2012-1571. Scope: local bookworm: reso

CVE-2014-8116 [MEDIUM] CVE-2014-8116: file - The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause ... The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities. Scope: local bookworm: resolved (fixed in 1:5.21+15-1) bullseye: resolved (fixed in 1:5.21+15-1) forky: resolved (fixed in 1:5.21+15-1) sid: resolved (fixed i

CVE-2014-8117 [MEDIUM] CVE-2014-8117: file - softmagic.c in file before 5.21 does not properly limit recursion, which allows ... softmagic.c in file before 5.21 does not properly limit recursion, which allows remote attackers to cause a denial of service (CPU consumption or crash) via unspecified vectors. Scope: local bookworm: resolved (fixed in 1:5.21+15-1) bullseye: resolved (fixed in 1:5.21+15-1) forky: resolved (fixed in 1:5.21+15-1) sid: resolved (fixed in 1:5.21+15-1) trixie: resolved (fi

CVE-2013-7345 [MEDIUM] CVE-2013-7345: file - The BEGIN regular expression in the awk script detector in magic/Magdir/commands... The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters. Sc

CVE-2013-4636 [MEDIUM] CVE-2013-4636: file - The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x... The mget function in libmagic/softmagic.c in the Fileinfo component in PHP 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (invalid pointer dereference and application crash) via an MP3 file that triggers incorrect MIME type detection during access to an finfo object. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resol

CVE-2012-1571 [MEDIUM] CVE-2012-1571: file - file before 5.11 and libmagic allow remote attackers to cause a denial of servic... file before 5.11 and libmagic allow remote attackers to cause a denial of service (crash) via a crafted Composite Document File (CDF) file that triggers (1) an out-of-bounds read or (2) an invalid pointer dereference. Scope: local bookworm: resolved (fixed in 5.11-1) bullseye: resolved (fixed in 5.11-1) forky: resolved (fixed in 5.11-1) sid: resolved (fixed in 5.11-1)

CVE-2009-0948 [CRITICAL] CVE-2009-0948: file - Multiple buffer overflows in the (1) cdf_read_sat, (2) cdf_read_long_sector_chai... Multiple buffer overflows in the (1) cdf_read_sat, (2) cdf_read_long_sector_chain, and (3) cdf_read_ssat function in file before 5.02. Scope: local bookworm: resolved (fixed in 5.02-1) bullseye: resolved (fixed in 5.02-1) forky: resolved (fixed in 5.02-1) sid: resolved (fixed in 5.02-1) trixie: resolved (fixed in 5.02-1)

CVE-2009-0947 [CRITICAL] CVE-2009-0947: file - Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sa... Multiple integer overflows in the (1) cdf_read_property_info and (2) cdf_read_sat functions in file before 5.02. Scope: local bookworm: resolved (fixed in 5.02-1) bullseye: resolved (fixed in 5.02-1) forky: resolved (fixed in 5.02-1) sid: resolved (fixed in 5.02-1) trixie: resolved (fixed in 5.02-1)

CVE-2009-3930 [CRITICAL] CVE-2009-3930: file - Multiple integer overflows in Christos Zoulas file before 5.02 allow user-assist... Multiple integer overflows in Christos Zoulas file before 5.02 allow user-assisted remote attackers to have an unspecified impact via a malformed compound document (aka cdf) file that triggers a buffer overflow. Scope: local bookworm: resolved (fixed in 5.03-1) bullseye: resolved (fixed in 5.03-1) forky: resolved (fixed in 5.03-1) sid: resolved (fixed in 5.03-1) trix

CVE-2009-1515 [MEDIUM] CVE-2009-1515: file - Heap-based buffer overflow in the cdf_read_sat function in src/cdf.c in Christos... Heap-based buffer overflow in the cdf_read_sat function in src/cdf.c in Christos Zoulas file 5.00 allows user-assisted remote attackers to execute arbitrary code via a crafted compound document file, as demonstrated by a .msi, .doc, or .mpp file. NOTE: some of these details are obtained from third party information. Scope: local bookworm: resolved (fixed in 5.02-1) bul

CVE-2009-2830 [MEDIUM] CVE-2009-2830: file - Multiple buffer overflows in Christos Zoulas file before 5.03 in Apple Mac OS X ... Multiple buffer overflows in Christos Zoulas file before 5.03 in Apple Mac OS X 10.6.x before 10.6.2 allow user-assisted remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted Common Document Format (CDF) file. NOTE: this might overlap CVE-2009-1515. Scope: local bookworm: resolved (fixed in 5.03-1) bullseye: resolved

CVE-2007-1536 [CRITICAL] CVE-2007-1536: file - Integer underflow in the file_printf function in the "file" program before 4.20 ... Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow. Scope: local bookworm: resolved (fixed in 4.20-1) bullseye: resolved (fixed in 4.20-1) forky: resolved (fixed in 4.20-1) sid: resolved (fixed in 4.20-1) trixie: resolved (fixed

CVE-2007-2799 [CRITICAL] CVE-2007-2799: file - Integer overflow in the "file" program 4.20, when running on 32-bit systems, as ... Integer overflow in the "file" program 4.20, when running on 32-bit systems, as used in products including The Sleuth Kit, might allow user-assisted attackers to execute arbitrary code via a large file that triggers an overflow that bypasses an assert() statement. NOTE: this issue is due to an incorrect patch for CVE-2007-1536. Scope: local bookworm: resolved (fixed