CVE-2019-8906 log

Source
Severity Medium
Remote Yes
Type Information disclosure
Description
do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
Group Package Affected Fixed Severity Status Ticket
AVG-907 file 5.35-1 5.36-1 High Fixed
Date Advisory Group Package Severity Description
03 Mar 2019 ASA-201903-5 AVG-907 file High multiple issues
References
https://github.com/file/file/commit/2858eaf99f6cc5aae129bcbf1e24ad160240185f
https://bugs.astron.com/view.php?id=64