suse · CVE-2007-1536

Quick triage

Priority: critical Published: 2021-05-30 12:38:23 UTC Updated: 2026-04-18 20:35:02 UTC

View at Official suse advisory, NVD, CVE.org · CVE detail

Freshness: upstream tracker timestamp is available; use API updated time as primary recency signal.

Tracker summary

CVE-2007-1536 severity critical: SUSE including 29 source package names (file-32bit-4.24-43.17, file-32bit-4.24-43.19.1, …), 29 product×package rows across 9 product lines (SUSE Linux Enterprise Server 11 SP1, SUSE Linux Enterprise Server 11 SP2, … (9 product lines)): Fixed 29.

Description:

Integer underflow in the file_printf function in the "file" program before 4.20 allows user-assisted attackers to execute arbitrary code via a file that triggers a heap-based buffer overflow.

cvelogic Threat Intelligence