Amazon Linux 1 Security Advisory: ALAS-2017-900
Advisory Release Date: 2017-10-03 11:00 Pacific
Advisory Updated Date: 2017-10-03 11:00 Pacific
An issue in file allowed an attacker to overwrite a fixed 20-byte stack buffer with a specially crafted .notes section in an ELF binary.
Affected Packages:
file
Issue Correction:
Run yum update file to update your system.
i686:
file-debuginfo-5.30-11.34.amzn1.i686
file-5.30-11.34.amzn1.i686
file-devel-5.30-11.34.amzn1.i686
file-libs-5.30-11.34.amzn1.i686
file-static-5.30-11.34.amzn1.i686
noarch:
python27-magic-5.30-11.34.amzn1.noarch
python26-magic-5.30-11.34.amzn1.noarch
src:
file-5.30-11.34.amzn1.src
x86_64:
file-debuginfo-5.30-11.34.amzn1.x86_64
file-5.30-11.34.amzn1.x86_64
file-static-5.30-11.34.amzn1.x86_64
file-devel-5.30-11.34.amzn1.x86_64
file-libs-5.30-11.34.amzn1.x86_64