Lucene search
PRIOn knowledge basePRION:CVE-2012-3405HistoryFeb 10, 2014 - 6:15 p.m.
Format string
2014-02-1018:15:00
PRIOn knowledge base
www.prio-n.com
6
The vfprintf function in stdio-common/vfprintf.c in libc in GNU C Library (aka glibc) 2.14 and other versions does not properly calculate a buffer length, which allows context-dependent attackers to bypass the FORTIFY_SOURCE format-string protection mechanism and cause a denial of service (segmentation fault and crash) via a format string with a large number of format specifiers that triggers “desynchronization within the buffer size handling,” a different vulnerability than CVE-2012-3404.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 8.4 lts | |
| ubuntu_linux | eq | 11.04 | |
| ubuntu_linux | eq | 11.10 | |
| ubuntu_linux | eq | 12.4 lts | |
| ubuntu_linux | eq | 10.4 lts | |
| glibc | eq | 2.14 | |
| enterprise_linux | eq | 6.0 | |
| enterprise_virtualization | eq | 3.0 |
Related
cve
cve
cvelist
cvelist
debiancve
debiancve
nvd
nvd
ubuntucve
ubuntucve
oraclelinux
oraclelinux
glibc security and bug fix update
2012-07-18 00:00:00
f5
f5
K16364 : GNU C Library (glibc) vulnerability CVE-2012-3406
2015-07-23 00:00:00
SOL16364 - GNU C Library (glibc) vulnerability CVE-2012-3406
2015-04-03 00:00:00
prion
prion
Format string
2014-02-10 18:15:00
Format string
2014-02-10 18:15:00
nessus
nessus
Amazon Linux AMI : glibc (ALAS-2012-109)
2013-09-04 00:00:00
Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20120718)
2012-08-01 00:00:00
RHEL 6 : glibc (RHSA-2012:1098)
2012-07-19 00:00:00
amazon
amazon
Medium: glibc
2012-07-25 17:56:00
openvas
openvas
RedHat Update for glibc RHSA-2012:1098-01
2012-07-19 00:00:00
RedHat Update for glibc RHSA-2012:1098-01
2012-07-19 00:00:00
CentOS Update for glibc CESA-2012:1098 centos6
2012-07-30 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:54:39
centos
centos
glibc, nscd security update
2012-07-18 18:17:20
redhat
redhat
(RHSA-2012:1098) Moderate: glibc security and bug fix update
2012-07-18 00:00:00
(RHSA-2012:1200) Moderate: rhev-hypervisor6 security and bug fix update
2012-08-23 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2012-10-02 00:00:00
GNU C Library regression
2012-12-17 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: glibc-2.15-54.fc17
2012-08-15 22:54:00
osv
osv
eglibc - security update
2015-02-23 00:00:00
eglibc - security update
2015-03-06 00:00:00
debian
debian
[SECURITY] [DSA 3169-1] eglibc security update
2015-02-23 06:08:58
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
securityvulns
securityvulns
[SECURITY] [DSA 3169-1] eglibc security update
2015-03-07 00:00:00
VMSA-2012-0018 VMware security updates for vCSA and ESXi
2013-01-02 00:00:00
vmware
vmware
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00