CVE-2007-2799

Name of the Vulnerable Software and Affected Versions file versions prior to 4.21 file-x86 versions prior to 4.21 file-64bit versions prior to 4.21 file-32bit versions prior to 4.21 file-devel versions prior to 4.21 file version 4.17 file version 4.10 file version 4.20

Description The issue concerns multiple vulnerabilities in the file package of various Linux operating systems, including openSUSE and SUSE Linux Enterprise. These vulnerabilities can be exploited remotely and may lead to a breach of confidentiality, integrity, and availability of protected information. The vulnerabilities can be triggered by large files that cause an integer overflow, potentially allowing attackers to execute arbitrary code.

Recommendations For file versions prior to 4.21, update to version 4.21 or later. For file-x86 versions prior to 4.21, update to version 4.21 or later. For file-64bit versions prior to 4.21, update to version 4.21 or later. For file-32bit versions prior to 4.21, update to version 4.21 or later. For file-devel versions prior to 4.21, update to version 4.21 or later. For file version 4.17, update to a newer version. For file version 4.10, update to a newer version. For file version 4.20, update to version 4.21 or later. As a temporary workaround, consider restricting access to the file package until a patch is available.