Debian File vulnerabilities

CVE-2007-2026 [HIGH] CVE-2007-2026: file - The gnu regular expression code in file 4.20 allows context-dependent attackers ... The gnu regular expression code in file 4.20 allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted document with a large number of line feed characters, which is not well handled by OS/2 REXX regular expressions that use wildcards, as originally reported for AMaViS. Scope: local bookworm: resolved (fixed in 4.20-6) bullseye: reso

CVE-2004-1304 [CRITICAL] CVE-2004-1304: file - Stack-based buffer overflow in the ELF header parsing code in file before 4.12 a... Stack-based buffer overflow in the ELF header parsing code in file before 4.12 allows attackers to execute arbitrary code via a crafted ELF file. Scope: local bookworm: resolved (fixed in 4.12) bullseye: resolved (fixed in 4.12) forky: resolved (fixed in 4.12) sid: resolved (fixed in 4.12) trixie: resolved (fixed in 4.12)

CVE-2003-1092 [HIGH] CVE-2003-1092: file - Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) To... Unknown vulnerability in the "Automatic File Content Type Recognition (AFCTR) Tool version of the file package before 3.41, related to "a memory allocation problem," has unknown impact. Scope: local bookworm: resolved (fixed in 3.4.1) bullseye: resolved (fixed in 3.4.1) forky: resolved (fixed in 3.4.1) sid: resolved (fixed in 3.4.1) trixie: resolved (fixed in 3.4.1)

CVE-2003-0102 [MEDIUM] CVE-2003-0102: file - Buffer overflow in tryelf() in readelf.c of the file command allows attackers to... Buffer overflow in tryelf() in readelf.c of the file command allows attackers to execute arbitrary code as the user running file, possibly via a large entity size value in an ELF header (elfhdr.e_shentsize). Scope: local bookworm: resolved (fixed in 3.40-1.1) bullseye: resolved (fixed in 3.40-1.1) forky: resolved (fixed in 3.40-1.1) sid: resolved (fixed in 3.40-1.1) tr