ELA-3-1 file security update

DoS via crafted ELF file

2018-06-21
Packagefile
Version5.11-2+deb7u10
Related CVE CVE-2018-10360

do_core_note() in readelf.c allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted ELF file.

For Debian 7 Wheezy, these problems have been fixed in version 5.11-2+deb7u10.

We recommend that you upgrade your file packages.

Further information about Extended LTS security advisories can be found at: https://deb.freexian.com/extended-lts/