CVE-2007-2799

Priority
Description
Integer overflow in the "file" program 4.20, when running on 32-bit
systems, as used in products including The Sleuth Kit, might allow
user-assisted attackers to execute arbitrary code via a large file that
triggers an overflow that bypasses an assert() statement. NOTE: this issue
is due to an incorrect patch for CVE-2007-1536.
Notes
Package
Source: file (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2019-12-05 20:43:19 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)