Synopsis: Moderate: file security update Issue date: 2007-05-30 CVE Names: CVE-2007-2799 The fix for CVE-2007-1536 introduced a new integer underflow flaw in the file utility. An attacker could create a carefully crafted file which, if examined by a victim using the file utility, could lead to arbitrary code execution. (CVE-2007-2799) SL 4.x SRPMS: file-4.10-3.0.2.el4.src.rpm i386: file-4.10-3.0.2.el4.i386.rpm x86_64: file-4.10-3.0.2.el4.x86_64.rpm SL 5.x SRPMS: file-4.17-9.0.1.el5.src.rpm i386: file-4.17-9.0.1.el5.i386.rpm x86_64: file-4.17-9.0.1.el5.x86_64.rpm -Connie Sieh -Troy Dawson