AVG-1083 log

Package file
Status Fixed
Severity High
Type arbitrary code execution
Affected 5.37-1
Fixed 5.38-1
Current 5.38-2 [testing]
5.38-1 [core]
Ticket FS#64430
Created Tue Jan 7 23:18:36 2020
Issue Severity Remote Type Description
CVE-2019-18218 High No Arbitrary code execution
cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte...
Date Advisory Package Description
09 Jan 2020 ASA-202001-2 file arbitrary code execution