The ELF parser in file 5.08 through 5.21 allows remote attackers to cause a denial of service via a large number of notes.
{ "availability": "No subscription required", "binaries": [ { "binary_name": "file", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "file-dbg", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "file-dbgsym", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "libmagic-dev", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "libmagic-dev-dbgsym", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "libmagic1", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "libmagic1-dbgsym", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "python-magic", "binary_version": "1:5.14-2ubuntu3.4" }, { "binary_name": "python3-magic", "binary_version": "1:5.14-2ubuntu3.4" } ] }