Debian Package Tracker

general

source: file (main)
version: 1:5.35-2
maintainer: Christoph Biedl [DMD]
arch: any
std-ver: 4.1.5
VCS: Git (Browse, QA)

versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]

[pool directory]

o-o-stable: 5.11-2+deb7u8
o-o-sec: 5.11-2+deb7u9
o-o-bpo: 1:5.22+15-2~bpo7+1
oldstable: 1:5.22+15-2+deb8u4
stable: 1:5.30-1+deb9u2
stable-sec: 1:5.30-1+deb9u1
testing: 1:5.35-2
unstable: 1:5.35-2

versioned links

5.11-2+deb7u8: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
5.11-2+deb7u9: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.22+15-2~bpo7+1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.22+15-2+deb8u4: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.30-1+deb9u1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.30-1+deb9u2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
1:5.35-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]

binaries

file
libmagic-dev
libmagic-mgc
libmagic1

action needed

A new upstream version is available: 5.36 high

A new upstream version 5.36 is available, you should consider packaging it.

Created: 2019-02-21 Last update: 2019-02-23 06:06

4 security issues in jessie high

There are 4 open security issues in jessie.

4 important issues:

CVE-2019-8907: do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact.
CVE-2019-8905: do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360.
CVE-2019-8906: do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
CVE-2019-8904: do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf.

Please fix them.

Created: 2019-02-18 Last update: 2019-02-22 16:07

4 security issues in stretch high

There are 4 open security issues in stretch.

4 important issues:

CVE-2019-8907: do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact.
CVE-2019-8905: do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360.
CVE-2019-8906: do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
CVE-2019-8904: do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf.

Please fix them.

Created: 2019-02-18 Last update: 2019-02-22 16:07

4 security issues in sid high

There are 4 open security issues in sid.

4 important issues:

CVE-2019-8907: do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact.
CVE-2019-8905: do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360.
CVE-2019-8906: do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
CVE-2019-8904: do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf.

Please fix them.

Created: 2019-02-18 Last update: 2019-02-22 16:07

4 security issues in buster high

There are 4 open security issues in buster.

4 important issues:

CVE-2019-8907: do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact.
CVE-2019-8905: do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360.
CVE-2019-8906: do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused.
CVE-2019-8904: do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf.

Please fix them.

Created: 2019-02-18 Last update: 2019-02-22 16:07

3 bugs tagged help in the BTS normal

The BTS contains 3 bugs tagged help, please consider helping the maintainer in dealing with them.

Created: 2019-02-11 Last update: 2019-02-23 10:37

2 bugs tagged patch in the BTS normal

The BTS contains patches fixing 2 bugs, consider including or untagging them.

Created: 2018-10-01 Last update: 2019-02-23 10:37

Standards version of the package is outdated. wishlist

The package should be updated to follow the last version of Debian Policy (Standards-Version 4.3.0 instead of 4.1.5).

Created: 2017-09-06 Last update: 2019-01-11 23:35

news

[rss feed]

[2019-01-17] file 1:5.35-2 MIGRATED to testing (Debian testing watch)
[2019-01-11] Accepted file 1:5.35-2 (source) into unstable (Christoph Biedl)
[2018-11-03] Accepted file 1:5.35-1 (source) into experimental (Christoph Biedl)
[2018-08-12] file 1:5.34-2 MIGRATED to testing (Debian testing watch)
[2018-08-06] Accepted file 1:5.34-2 (source) into unstable (Christoph Biedl)
[2018-07-26] Accepted file 1:5.34-1 (source) into experimental (Christoph Biedl)
[2018-06-14] Accepted file 1:5.30-1+deb9u2 (source armel all) into proposed-updates->stable-new, proposed-updates (Christoph Biedl)
[2018-06-14] file 1:5.33-3 MIGRATED to testing (Debian testing watch)
[2018-06-13] Accepted file 1:5.22+15-2+deb8u4 (source powerpc all) into oldstable-proposed-updates->oldstable-new, oldstable-proposed-updates (Christoph Biedl)
[2018-06-11] Accepted file 1:5.33-3 (source powerpc) into unstable (Christoph Biedl)
[2018-05-04] file 1:5.33-2 MIGRATED to testing (Debian testing watch)
[2018-04-29] Accepted file 1:5.33-2 (source powerpc) into unstable (Christoph Biedl)
[2018-04-24] Accepted file 1:5.33-1 (source powerpc) into unstable (Christoph Biedl)
[2018-02-19] file 1:5.32-2 MIGRATED to testing (Debian testing watch)
[2018-02-13] Accepted file 1:5.32-2 (source powerpc) into unstable (Christoph Biedl)
[2017-09-08] file 1:5.32-1 MIGRATED to testing (Debian testing watch)
[2017-09-07] Accepted file 1:5.30-1+deb9u1 (source) into proposed-updates->stable-new, proposed-updates (Salvatore Bonaccorso)
[2017-09-05] Accepted file 1:5.32-1 (source powerpc all) into unstable (Christoph Biedl)
[2017-08-12] file 1:5.31-1 MIGRATED to testing (Debian testing watch)
[2017-08-06] Accepted file 1:5.31-1 (source armel all) into unstable (Christoph Biedl)
[2017-05-08] file 1:5.30-1 MIGRATED to testing (Debian testing watch)
[2017-04-29] Accepted file 1:5.30-1 (source powerpc all) into unstable (Christoph Biedl)
[2017-02-05] file 1:5.29-3 MIGRATED to testing (Debian testing watch)
[2017-01-26] Accepted file 1:5.29-3 (source powerpc all) into unstable (Christoph Biedl)
[2016-12-24] file 1:5.29-2 MIGRATED to testing (Debian testing watch)
[2016-12-14] Accepted file 1:5.22+15-2+deb8u3 (source powerpc all) into proposed-updates->stable-new, proposed-updates (Christoph Biedl)
[2016-12-13] Accepted file 1:5.29-2 (source powerpc all) into unstable (Christoph Biedl)
[2016-10-31] file 1:5.29-1 MIGRATED to testing (Debian testing watch)
[2016-10-25] Accepted file 1:5.29-1 (source powerpc all) into unstable (Christoph Biedl)
[2016-08-03] file 1:5.28-4 MIGRATED to testing (Debian testing watch)

bugs [bug history graph]

all: 54 57
RC: 0
I&N: 34 36
M&W: 20 21
F&P: 0
patch: 2
help: 3
NC: 1

links

homepage
lintian
buildd: logs, clang, reproducibility
popcon
browse source code
edit tags
security tracker
screenshots

ubuntu

[Information about Ubuntu for Debian Developers]

version: 1:5.35-2
47 bugs (2 patches)