[SECURITY] Fedora Core 6 Update: file-4.19-2.fc6

Martin Bacovsky mbacovsk at redhat.com
Fri Mar 30 16:07:48 UTC 2007 

---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2007-391
2007-03-30
---------------------------------------------------------------------

Product     : Fedora Core 6
Name        : file
Version     : 4.19
Release     : 2.fc6
Summary     : A utility for determining file types.
Description :
The file command is used to identify a particular file according to the
type of data contained by the file.  File can identify many different
file types, including ELF binaries, system libraries, RPM packages, and
different graphics formats.

You should install the file package, since the file command is such a
useful utility.

---------------------------------------------------------------------
Update Information:

this issue should fix CVE-2007-1536 (heap overflow that can
result in arbitrary code execution)
---------------------------------------------------------------------
* Fri Mar 30 2007 Martin Bacovsky <mbacovsk at redhat.com> - 4.19-2
- Resolves: #233164: CVE-2007-1536 file 4.20 fixes a heap 
  overflow in that can result in arbitrary code execution

---------------------------------------------------------------------
This update can be downloaded from:
    http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/

e7bdddcdf438aebd892539ec9d09372f7cd53598  SRPMS/file-4.19-2.fc6.src.rpm
e7bdddcdf438aebd892539ec9d09372f7cd53598  noarch/file-4.19-2.fc6.src.rpm
3dc4ec26b7b4dee9790219eff7c97b88cf30569f  ppc/file-4.19-2.fc6.ppc.rpm
0ce9d0ecfe1e89cd4ae5eaeb1f4a2a85bc3c0761  ppc/debug/file-debuginfo-4.19-2.fc6.ppc.rpm
177cddd401a4f94a7427d0d3689fe4e7c77b9326  x86_64/file-4.19-2.fc6.x86_64.rpm
e1624a2ac23c2932d4457090f8c05d7f81fec2d1  x86_64/debug/file-debuginfo-4.19-2.fc6.x86_64.rpm
36730bb2f1450e46ac808048d621351d4080ae1f  i386/file-4.19-2.fc6.i386.rpm
4953b27f3f26be7b4153280382618f41e1e687d5  i386/debug/file-debuginfo-4.19-2.fc6.i386.rpm

This update can be installed with the 'yum' update program.  Use 'yum update
package-name' at the command line.  For more information, refer to 'Managing
Software with yum,' available at http://fedora.redhat.com/docs/yum/.
---------------------------------------------------------------------

More information about the package-announce mailing list