acheddamiman@gmail.com wrote: > The command "file" is vulnerable to heap overflow. > > Solution: > > Patch the kernel source with: > ftp://ftp.openbsd.org/pub/OpenBSD/patches/4.1/common/009_file.patch > > By AchedDamiman This is CVE-2007-1536, discovered by Jean-Sebastien Guay-Leroux. Patches are also available for OpenBSD 4.0: http://openbsd.org/errata40.html#015_file