Ubuntu
file package

file 1:5.14-2ubuntu3.3 source package in Ubuntu

Changelog

file (1:5.14-2ubuntu3.3) trusty-security; urgency=medium

  * SECURITY UPDATE: DoS via insufficient note headers
    - debian/patches/CVE-2014-3710.patch: handle running out of not headers
      in src/readelf.c.
    - CVE-2014-3710
  * SECURITY UPDATE: DoS in ELF parser
    - debian/patches/CVE-2014-8116.patch: limit number of headers and
      capabilities in src/elfclass.h, src/readelf.c.
    - CVE-2014-8116
  * SECURITY UPDATE: DoS via missing recursion limits
    - debian/patches/CVE-2014-8117.patch: lower recursion level and allow
      it to be set from the command line in src/apprentice.c, src/file.c,
      src/file.h, src/file_opts.h, src/funcs.c, src/magic.c,
      src/magic.h.in, src/softmagic.c, add new option to documentation in
      doc/file.man, doc/libmagic.man.
    - CVE-2014-8117
  * SECURITY UPDATE: DoS via long pascal strings
    - debian/patches/pr398-truncate-pascal-strings.patch: correctly
      calculate size in src/softmagic.c.
    - No CVE number
  * debian/libmagic1.symbols: added new symbols
 -- Marc Deslauriers <email address hidden>   Tue, 27 Jan 2015 09:23:18 -0500

Upload details

Uploaded by:
Marc Deslauriers
Uploaded to:
Trusty
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
utils
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
file_5.14.orig.tar.gz 633.4 KiB 461ba01dd0900a3b7c2dcd901b04903192c07887a9c1928af0be507572c77fe4
file_5.14-2ubuntu3.3.debian.tar.xz 40.4 KiB 7400a64b2d8d9a7c288320d42d7a77a9626ed849aaa500e902a6387155d313c2
file_5.14-2ubuntu3.3.dsc 2.0 KiB 6935686df3c0dfc9a5d936b167f33f9629aa0e1924703c6d68d5a486317bdbc5

View changes file

Binary packages built by this source

file: Determines file type using "magic" numbers

 File tests each argument in an attempt to classify it. There are three sets of
 tests, performed in this order: filesystem tests, magic number tests, and
 language tests. The first test that succeeds causes the file type to be
 printed.

file-dbg: Determines file type using "magic" numbers (debug)

 File tests each argument in an attempt to classify it. There are three sets of
 tests, performed in this order: filesystem tests, magic number tests, and
 language tests. The first test that succeeds causes the file type to be
 printed.
 .
 This package contains the debugging symbols.

libmagic-dev: File type determination library using "magic" numbers (development)

 This library can be used to classify files according to magic number tests. It
 implements the core functionality of the file command.
 .
 This package contains the development files.

libmagic1: File type determination library using "magic" numbers

 This library can be used to classify files according to magic number tests. It
 implements the core functionality of the file command.

python-magic: File type determination library using "magic" numbers (Python bindings)

 This library can be used to classify files according to magic number tests. It
 implements the core functionality of the file command.
 .
 This package contains the Python bindings.

python3-magic: File type determination library using "magic" numbers (Python 3 bindings)

 This library can be used to classify files according to magic number tests. It
 implements the core functionality of the file command.
 .
 This package contains the Python 3 bindings.