FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-1536

This CVE name corresponds to:

Entered Topic
2007-05-23 FreeBSD -- heap overflow in file(1)

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2007-1536
Phase Assigned(20070320)

Description

Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.

References

Source Reference
BUGTRAQ 20070825 OpenBSD 4.1 - Heap overflow vulnerabillity
BUGTRAQ 20070828 Re: OpenBSD 4.1 - Heap overflow vulnerabillity
MLIST [file] 20070302 file-4.20 is now available
CONFIRM https://bugs.gentoo.org/show_bug.cgi?id=171452
CONFIRM https://issues.rpath.com/browse/RPL-1148
CONFIRM http://support.avaya.com/elmodocs2/security/ASA-2007-179.htm
CONFIRM http://docs.info.apple.com/article.html?artnum=305530
APPLE APPLE-SA-2007-05-24
DEBIAN DSA-1274
FREEBSD FreeBSD-SA-07:04
GENTOO GLSA-200703-26
GENTOO GLSA-200710-19
MANDRIVA MDKSA-2007:067
NETBSD NetBSD-SA2008-001
OPENBSD [4.0] 20070709 015: SECURITY FIX: July 9, 2007
REDHAT RHSA-2007:0124
SLACKWARE SSA:2007-093-01
SUSE SUSE-SR:2007:005
SUSE SUSE-SA:2007:040
UBUNTU USN-439-1
CERT-VN VU#606700
BID 23021
OVAL oval:org.mitre.oval:def:10658
VUPEN ADV-2007-1040
VUPEN ADV-2007-1939
SECTRACK 1017796
SECUNIA 24548
SECUNIA 24604
SECUNIA 24616
SECUNIA 24617
SECUNIA 24592
SECUNIA 24608
SECUNIA 24723
SECUNIA 24754
SECUNIA 25133
SECUNIA 25393
SECUNIA 25402
SECUNIA 25931
SECUNIA 25989
SECUNIA 27307
SECUNIA 27314
SECUNIA 29179
XF openbsd-file-bo(36283)