[SECURITY] [DLA 1698-1] file security update

[Adrian Bunk <bunk@debian.org>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : file
Version        : 1:5.22+15-2+deb8u5
CVE ID         : CVE-2019-8905 CVE-2019-8907

Potential buffer over-reads in readelf.c have been found in file,
a popular file type guesser.

For Debian 8 "Jessie", these problems have been fixed in version
1:5.22+15-2+deb8u5.

We recommend that you upgrade your file packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=ucZa
-----END PGP SIGNATURE-----