CVE-2012-1571

Published: Jul 17, 2012

Modified: Dec 4, 2025

PUBLISHED

Description

file before 5.11 and libmagic allow remote attackers to cause a denial of service (crash) via a crafted Composite Document File (CDF) file that triggers (1) an out-of-bounds read or (2) an invalid pointer dereference.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

DSA-2422

vendor-advisory

x_refsource_DEBIAN

MDVSA-2012:035

vendor-advisory

x_refsource_MANDRIVA

https://github.com/glensc/file/commit/1aec04dbf8a24b8a6ba64c4f74efa0628e36db0b

x_refsource_CONFIRM

[file] 20120221 file-5.11 is now available

mailing-list

x_refsource_MLIST

https://github.com/glensc/file/commit/1859fdb4e67c49c463c4e0078054335cd46ba295

x_refsource_CONFIRM

USN-2123-1

vendor-advisory

x_refsource_UBUNTU

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-1571

Description

Affected Products

References