It was discovered that file incorrectly handled certain malformed ELF files. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code.
{ "binaries": [ { "binary_name": "file", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "file-dbg", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "file-dbgsym", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "libmagic-dev", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "libmagic-dev-dbgsym", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "libmagic1", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "libmagic1-dbgsym", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "python-magic", "binary_version": "1:5.25-2ubuntu1.2" }, { "binary_name": "python3-magic", "binary_version": "1:5.25-2ubuntu1.2" } ], "availability": "No subscription required" }
{ "binaries": [ { "binary_name": "file", "binary_version": "1:5.32-2ubuntu0.2" }, { "binary_name": "file-dbgsym", "binary_version": "1:5.32-2ubuntu0.2" }, { "binary_name": "libmagic-dev", "binary_version": "1:5.32-2ubuntu0.2" }, { "binary_name": "libmagic-mgc", "binary_version": "1:5.32-2ubuntu0.2" }, { "binary_name": "libmagic1", "binary_version": "1:5.32-2ubuntu0.2" }, { "binary_name": "libmagic1-dbgsym", "binary_version": "1:5.32-2ubuntu0.2" } ], "availability": "No subscription required" }