VYPR

rpm package

almalinux/file

pkg:rpm/almalinux/file

Vulnerabilities (2)

  • CVE-2022-48554Aug 22, 2023
    affected < 5.39-16.el9fixed 5.39-16.el9

    File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source project.

  • CVE-2019-18218Oct 21, 2019
    affected < 5.33-20.el8fixed 5.33-20.el8

    cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).