GLSA Advocate
Joined: 12 May 2004 Posts: 2663
|
Posted: Thu May 31, 2007 8:26 pm Post subject: [ GLSA 200705-25 ] file: Integer overflow |
|
|
Gentoo Linux Security Advisory
Title: file: Integer overflow (GLSA 200705-25)
Severity: high
Exploitable: remote
Date: May 31, 2007
Updated: June 01, 2007
Bug(s): #179583
ID: 200705-25
Synopsis
An integer overflow vulnerability has been reported in file allowing for
the user-assisted execution of arbitrary code.
Background
file is a utility that guesses a file format by scanning binary data
for patterns.
Affected Packages
Package: sys-apps/file
Vulnerable: < 4.21
Unaffected: >= 4.21
Architectures: x86 ppc hppa
Description
Colin Percival from FreeBSD reported that the previous fix for the
file_printf() buffer overflow introduced a new integer overflow.
Impact
A remote attacker could entice a user to run the file program on an
overly large file (more than 1Gb) that would trigger an integer
overflow on 32-bit systems, possibly leading to the execution of
arbitrary code with the rights of the user running file.
Workaround
There is no known workaround at this time.
Resolution
Since file is a system package, all Gentoo users should upgrade to the
latest version:
Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-apps/file-4.21" |
References
CVE-2007-2799
Last edited by GLSA on Sat Mar 01, 2014 4:25 am; edited 5 times in total |
|