The ELF parser (readelf.c) in file before 5.21 allows remote attackers to cause a denial of service (CPU consumption or crash) via a large number of (1) program or (2) section headers or (3) invalid capabilities.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "libmagic1": "1:5.14-2ubuntu3.3", "file-dbg": "1:5.14-2ubuntu3.3", "file": "1:5.14-2ubuntu3.3", "libmagic-dev": "1:5.14-2ubuntu3.3", "python-magic": "1:5.14-2ubuntu3.3", "python3-magic": "1:5.14-2ubuntu3.3" } ] }