Debian Local Security Checks : Debian: Security Advisory (DSA-2873-1)

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.702873

Category: Debian Local Security Checks

Title: Debian: Security Advisory (DSA-2873-1)

Summary: The remote host is missing an update for the Debian 'file' package(s) announced via the DSA-2873-1 advisory.

Description: Summary:
The remote host is missing an update for the Debian 'file' package(s) announced via the DSA-2873-1 advisory.

Vulnerability Insight:
Several vulnerabilities have been found in file, a file type classification tool.

Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable (PE) format files, the executable format used on Windows. When processing a defective or intentionally prepared PE executable which contains invalid offset information, the file_strncmp routine will access memory that is out of bounds, causing file to crash. The Common Vulnerabilities and Exposures project ID CVE-2014-2270 has been assigned to identify this flaw.

Mike Frysinger reported that file's rule for detecting AWK scripts significantly slows down file. The regular expression to detect AWK files contained two star operators, which could be exploited to cause excessive backtracking in the regex engine.

For the oldstable distribution (squeeze), these problems have been fixed in version 5.04-5+squeeze4.

For the stable distribution (wheezy), these problems have been fixed in version 5.11-2+deb7u2.

For the testing distribution (jessie), these problems have been fixed in version 1:5.17-1.

For the unstable distribution (sid), these problems have been fixed in version 1:5.17-1.

We recommend that you upgrade your file packages.

Affected Software/OS:
'file' package(s) on Debian 6, Debian 7.

Solution:
Please install the updated package(s).

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Cross-Ref: Common Vulnerability Exposure (CVE) ID: CVE-2013-7345
Debian Security Information: DSA-2873 (Google Search)
http://www.debian.org/security/2014/dsa-2873
RedHat Security Advisories: RHSA-2014:1765
http://rhn.redhat.com/errata/RHSA-2014-1765.html
Common Vulnerability Exposure (CVE) ID: CVE-2014-2270
https://security.gentoo.org/glsa/201503-08
http://seclists.org/oss-sec/2014/q1/473
http://seclists.org/oss-sec/2014/q1/504
http://seclists.org/oss-sec/2014/q1/505
SuSE Security Announcement: openSUSE-SU-2014:0364 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00034.html
SuSE Security Announcement: openSUSE-SU-2014:0367 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00037.html
SuSE Security Announcement: openSUSE-SU-2014:0435 (Google Search)
http://lists.opensuse.org/opensuse-updates/2014-03/msg00084.html
http://www.ubuntu.com/usn/USN-2162-1
http://www.ubuntu.com/usn/USN-2163-1

Copyright Copyright (C) 2014 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.702873
Category:	Debian Local Security Checks
Title:	Debian: Security Advisory (DSA-2873-1)
Summary:	The remote host is missing an update for the Debian 'file' package(s) announced via the DSA-2873-1 advisory.
Description:	Summary: The remote host is missing an update for the Debian 'file' package(s) announced via the DSA-2873-1 advisory. Vulnerability Insight: Several vulnerabilities have been found in file, a file type classification tool. Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable (PE) format files, the executable format used on Windows. When processing a defective or intentionally prepared PE executable which contains invalid offset information, the file_strncmp routine will access memory that is out of bounds, causing file to crash. The Common Vulnerabilities and Exposures project ID CVE-2014-2270 has been assigned to identify this flaw. Mike Frysinger reported that file's rule for detecting AWK scripts significantly slows down file. The regular expression to detect AWK files contained two star operators, which could be exploited to cause excessive backtracking in the regex engine. For the oldstable distribution (squeeze), these problems have been fixed in version 5.04-5+squeeze4. For the stable distribution (wheezy), these problems have been fixed in version 5.11-2+deb7u2. For the testing distribution (jessie), these problems have been fixed in version 1:5.17-1. For the unstable distribution (sid), these problems have been fixed in version 1:5.17-1. We recommend that you upgrade your file packages. Affected Software/OS: 'file' package(s) on Debian 6, Debian 7. Solution: Please install the updated package(s). CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-7345 Debian Security Information: DSA-2873 (Google Search) http://www.debian.org/security/2014/dsa-2873 RedHat Security Advisories: RHSA-2014:1765 http://rhn.redhat.com/errata/RHSA-2014-1765.html Common Vulnerability Exposure (CVE) ID: CVE-2014-2270 https://security.gentoo.org/glsa/201503-08 http://seclists.org/oss-sec/2014/q1/473 http://seclists.org/oss-sec/2014/q1/504 http://seclists.org/oss-sec/2014/q1/505 SuSE Security Announcement: openSUSE-SU-2014:0364 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00034.html SuSE Security Announcement: openSUSE-SU-2014:0367 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00037.html SuSE Security Announcement: openSUSE-SU-2014:0435 (Google Search) http://lists.opensuse.org/opensuse-updates/2014-03/msg00084.html http://www.ubuntu.com/usn/USN-2162-1 http://www.ubuntu.com/usn/USN-2163-1
Copyright	Copyright (C) 2014 Greenbone AG