> Integer overflow in the "file" program 4.20, when running on 32-bit > systems, might allow user-assisted attackers to execute arbitrary code > via a large file that triggers an overflow that bypasses an assert() > statement. NOTE: this issue is due to an incorrect patch for > CVE-2007-1536.
As file 4.21 is not affected, only sarge and needs an update. Sending the proposed package to the security team now. Regards, Daniel -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
