libmagic.so is vulnerable to denial of service (DoS). The attack is possible because the attacker can send a malicious ELF file to the do_core_note
function in readelf.c
, causing out of bound reads that can lead to an application crashing.
CPE | Name | Operator | Version |
---|---|---|---|
libmagic.so | eq | 1.0.0 | |
file | eq | 5.11__35.el7 | |
file | eq | 5.11__33.el7 |