AVG-1083 log
| Package | file |
| Status | Fixed |
| Severity | High |
| Type | arbitrary code execution |
| Affected | 5.37-1 |
| Fixed | 5.38-1 |
| Current | 5.46-3 [core] |
| Ticket | FS#64430 |
| Created | Tue Jan 7 23:18:36 2020 |
| Issue | Severity | Remote | Type | Description |
|---|---|---|---|---|
| CVE-2019-18218 | High | No | Arbitrary code execution | cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte... |
| Date | Advisory | Package | Type |
|---|---|---|---|
| 09 Jan 2020 | ASA-202001-2 | file | arbitrary code execution |