See http://www.idefense.com/advisory/03.04.03.txt Not the worst exploit in the world (one system user has to specifically convince another to examine a specially crafted file with the file utility in order to force code execution), but one that should be eventually fixed. Soultion: Provide an ebuild for File 3.41 to counter. Reproducible: Always Steps to Reproduce:
It is NOT only a local exploit - it can be EXPLOITED REMOTELY if you use content-filters such as amavis, amavis-ng amavisd or amavisd-new as far as I'm aware of. Because they inspect every file you email to them. So all you using those filters - and perhaps others? would do nicely to upgrade your file tool. IE. it should be marked as important.
glsa sent