do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360.
CVSS Details
- CVSS 3.1 Base Score: 4.4
- CVSS 3.1 Vector: (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L)
Covered by Rapid7
| Product | Vendor Advisory | Solution File | Added | Published |
|---|---|---|---|---|
| Alpine Linux | alpine-linux-upgrade-file | Nov 8, 2019 | Feb 18, 2019 | |
| Amazon_linux | — | amazon-linux-upgrade-file | Apr 1, 2019 | Feb 18, 2019 |
| Arch Linux | arch-linux-upgrade-latest | Jul 11, 2025 | Feb 18, 2019 | |
| Debian | debian-upgrade-file | Mar 12, 2019 | Feb 18, 2019 | |
| Huawei Euleros 2_0_sp8 | huawei-euleros-2_0_sp8-upgrade-filehuawei-euleros-2_0_sp8-upgrade-file-libshuawei-euleros-2_0_sp8-upgrade-python3-magic | Aug 31, 2020 | Feb 18, 2019 | |
| Redhat_linux | no-fix-redhat-rpm-package | Jul 9, 2025 | Feb 18, 2019 | |
| Suse | — | suse-upgrade-filesuse-upgrade-file-develsuse-upgrade-file-devel-32bitsuse-upgrade-file-magicsuse-upgrade-libmagic1suse-upgrade-libmagic1-32bitsuse-upgrade-python-magicsuse-upgrade-python2-magicsuse-upgrade-python3-magic | Mar 19, 2019 | Feb 18, 2019 |
| Ubuntu | ubuntu-upgrade-fileubuntu-upgrade-libmagic1 | Apr 1, 2019 | Feb 18, 2019 | |
| Vmware Photon_os | vmware-photon_os_update_tdnf | Jan 20, 2025 | Feb 18, 2019 |
Prioritise with Active Threat Intelligence
With curated Threat Intelligence, you can see which vulnerabilities truly put you at risk, prioritize what matters most, and act before attackers do.
Explore Intelligence Hub