CVE-2019-18218
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2019-18218
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-18218.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2019-18218
- Downstream
- Related
- Published
- 2019-10-21T05:15:10.520Z
- Modified
- 2025-11-14T09:23:30.126208Z
- Severity
-
- 7.8 (High) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
cdfreadpropertyinfo in cdf.c in file through 5.37 does not restrict the number of CDFVECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).
- References
-
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CV6PFCEYHYALMTT45QE2U5C5TEJZQPXJ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/D6BJVGXSCC6NMIAWX36FPWHEIFON3OSE/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VBK6XOJR6OVWT2FUEBO7V7KCOSSLAP52/
- http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00044.html
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16780
- https://github.com/file/file/commit/46a8443f76cec4b41ec736eca396984c74664f84
- https://lists.debian.org/debian-lts-announce/2019/10/msg00032.html
- https://lists.debian.org/debian-lts-announce/2021/07/msg00008.html
- https://security.gentoo.org/glsa/202003-24
- https://security.netapp.com/advisory/ntap-20200115-0001/
- https://usn.ubuntu.com/4172-1/
- https://usn.ubuntu.com/4172-2/
- https://www.debian.org/security/2019/dsa-4550
Affected packages
Git / github.com/file/file
Affected ranges
- Type
- GIT
- Repo
- https://github.com/file/file
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
FILE3_27
FILE3_28
FILE3_30
FILE3_31
FILE3_32
FILE3_33
FILE3_34
FILE3_35
FILE3_36
FILE3_37
FILE3_38
FILE3_39
FILE3_40
FILE3_41
FILE4_00
FILE4_01
FILE4_02
FILE4_03
FILE4_04
FILE4_05
FILE4_06
FILE4_07
FILE4_08
FILE4_09
FILE4_10
FILE4_11
FILE4_12
FILE4_13
FILE4_14
FILE4_15
FILE4_16
FILE4_17
FILE4_18
FILE4_19
FILE4_20
FILE4_21
FILE4_22
FILE4_23
FILE4_24
FILE4_25
FILE4_26
FILE5_00
FILE5_01
FILE5_02
FILE5_03
FILE5_04
FILE5_07
FILE5_08
FILE5_09
FILE5_10
FILE5_11
FILE5_12
FILE5_13
FILE5_14
FILE5_15
FILE5_16
FILE5_17
FILE5_18
FILE5_19
FILE5_20
FILE5_21
FILE5_22
FILE5_23
FILE5_24
FILE5_25
FILE5_26
FILE5_27
FILE5_28
FILE5_29
FILE5_30
FILE5_31
FILE5_32
FILE5_33
FILE5_34
FILE5_35
FILE5_36
FILE5_37
pre-rrt-big-changes-post-4-23
Database specific
vanir_signatures
[
{
"source": "https://github.com/file/file/commit/46a8443f76cec4b41ec736eca396984c74664f84",
"signature_version": "v1",
"signature_type": "Function",
"id": "CVE-2019-18218-124a6812",
"target": {
"function": "cdf_read_property_info",
"file": "src/cdf.c"
},
"digest": {
"length": 4060.0,
"function_hash": "141462265533073168588410924988499256220"
},
"deprecated": false
},
{
"source": "https://github.com/file/file/commit/46a8443f76cec4b41ec736eca396984c74664f84",
"signature_version": "v1",
"signature_type": "Line",
"id": "CVE-2019-18218-4601ee86",
"target": {
"file": "src/cdf.c"
},
"digest": {
"line_hashes": [
"232348618922950287035341901861972145872",
"338533911114036514584387668062207342846",
"326674587567267172409291237374634580764",
"264564310128975935481162260876263917724",
"246134627259958658615817409114321934769",
"190950152636129980836088233351599417731",
"333926495558274210915114571492543351460",
"263999937339594604155784173374512471434",
"152715470018542414313236424384854217638",
"100274328262298050445601681789737821828",
"87563207867777330957918320582015450416",
"38824614804368571099286801056625173862",
"142503734579567137890548824060177062290"
],
"threshold": 0.9
},
"deprecated": false
}
]