VulnerableCode Package Details - pkg:alpm/archlinux/file@5.37-1

Search for packages

Package details: pkg:alpm/archlinux/file@5.37-1

Essentials
History (3)

purl	pkg:alpm/archlinux/file@5.37-1

Next non-vulnerable version	5.38-1
Latest non-vulnerable version	5.38-1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-hadq-pjas-aaap Aliases: CVE-2019-18218	cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).	5.38-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:45:53.507714+00:00	Arch Linux Importer	Affected by	VCID-hadq-pjas-aaap	https://security.archlinux.org/AVG-1083	36.0.0
2024-09-18T02:00:56.010453+00:00	Arch Linux Importer	Affected by	VCID-hadq-pjas-aaap	https://security.archlinux.org/AVG-1083	34.0.1
2024-01-03T22:27:12.986952+00:00	Arch Linux Importer	Affected by	VCID-hadq-pjas-aaap	https://security.archlinux.org/AVG-1083	34.0.0rc1