|
Mandriva update for file
|
|
|
|
|
Secunia Advisory:
|
SA25544
|
|
|
Release Date:
|
2007-06-06
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
DoS
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| OS: | Mandriva Linux 2007.0
|
|
| | CVE reference: | CVE-2007-2026 (Secunia mirror)
CVE-2007-2799 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Mandriva has issued an update for file. This fixes a vulnerability and a security issue, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
For more information:
SA24548
The security issue is caused due to certain regular expressions, which can consume all available CPU resources when identifying a specially crafted file. This can be exploited to cause a DoS by e.g. tricking an automated system into identifying a malicious file using the "file" command.
Solution:
Apply updated packages.
Mandriva Linux 2007
3da3923de6da550bab34801eef616c65 2007.0/i586/file-4.17-2.2mdv2007.0.i586.rpm
cdda9efd3b6b29b3bd959c27b9b4ff45 2007.0/i586/libmagic1-4.17-2.2mdv2007.0.i586.rpm
7a7639ae8578d60800a3606ea7846046 2007.0/i586/libmagic1-devel-4.17-2.2mdv2007.0.i586.rpm
b88d355059a7abaa684ca4ccd2902f5e 2007.0/i586/libmagic1-static-devel-4.17-2.2mdv2007.0.i586.rpm
8be4b2fc01aae6687cea3d32bf13adec 2007.0/i586/python-magic-4.17-2.2mdv2007.0.i586.rpm
0faac11bd3ceb07623dcc538259b4920 2007.0/SRPMS/file-4.17-2.2mdv2007.0.src.rpm
Mandriva Linux 2007/X86_64
7b236e74e29e7322a63db012508f4ff7 2007.0/x86_64/file-4.17-2.2mdv2007.0.x86_64.rpm
c9ee191afb3c4f13989aecc4c0550a64 2007.0/x86_64/lib64magic1-4.17-2.2mdv2007.0.x86_64.rpm
895f9822301c950fa52b34a8f1e6458d 2007.0/x86_64/lib64magic1-devel-4.17-2.2mdv2007.0.x86_64.rpm
a667f8207f61a7407ad3434e779cd2a3 2007.0/x86_64/lib64magic1-static-devel-4.17-2.2mdv2007.0.x86_64.rpm
87b499c21853acc87c968c6a24a5f0d4 2007.0/x86_64/python-magic-4.17-2.2mdv2007.0.x86_64.rpm
0faac11bd3ceb07623dcc538259b4920 2007.0/SRPMS/file-4.17-2.2mdv2007.0.src.rpm
Original Advisory:
http://www.mandriva.com/security/advisories?name=MDKSA-2007:114
Other References:
SA24548:
http://secunia.com/advisories/24548/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
269 Related Secunia Security Advisories, displaying 10
|
|
|
1. Mandriva update for rsync
|
|
2. Mandriva update for cups
|
|
3. Mandriva update for openssh
|
|
4. Mandriva update for perl-Tk
|
|
5. Mandriva update for sarg
|
|
6. Mandriva update for bzip2
|
|
7. Mandriva update for krb5
|
|
8. Mandriva update for perl-Net-DNS
|
|
9. Mandriva update for unzip
|
|
10. Mandriva update for gcc
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
