rpm package
almalinux/file-devel
pkg:rpm/almalinux/file-devel
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2022-48554 | — | < 5.39-16.el9 | 5.39-16.el9 | Aug 22, 2023 | File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source project. | ||
| CVE-2019-18218 | — | < 5.33-20.el8 | 5.33-20.el8 | Oct 21, 2019 | cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write). |
- CVE-2022-48554Aug 22, 2023affected < 5.39-16.el9fixed 5.39-16.el9
File before 5.43 has an stack-based buffer over-read in file_copystr in funcs.c. NOTE: "File" is the name of an Open Source project.
- CVE-2019-18218Oct 21, 2019affected < 5.33-20.el8fixed 5.33-20.el8
cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).