Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
redhatRedHatRHSA-2012:1461
HistoryNov 14, 2012 - 12:00 a.m.

(RHSA-2012:1461) Moderate: libproxy security update

2012-11-1400:00:00
access.redhat.com
5

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

86.9%

JSON

libproxy is a library that handles all the details of proxy configuration.

A buffer overflow flaw was found in the way libproxy handled the
downloading of proxy auto-configuration (PAC) files. A malicious server
hosting a PAC file or a man-in-the-middle attacker could use this flaw to
cause an application using libproxy to crash or, possibly, execute
arbitrary code, if the proxy settings obtained by libproxy (from the
environment or the desktop environment settings) instructed the use of a
PAC proxy configuration. (CVE-2012-4505)

This issue was discovered by the Red Hat Security Response Team.

Users of libproxy should upgrade to these updated packages, which contain
a backported patch to correct this issue. All applications using libproxy
must be restarted for this update to take effect.

OSVersionArchitecturePackageVersionFilename
RedHat6ppc64libproxy-bin< 0.3.0-3.el6_3libproxy-bin-0.3.0-3.el6_3.ppc64.rpm
RedHat6x86_64libproxy-webkit< 0.3.0-3.el6_3libproxy-webkit-0.3.0-3.el6_3.x86_64.rpm
RedHat6srclibproxy< 0.3.0-3.el6_3libproxy-0.3.0-3.el6_3.src.rpm
RedHat6i686libproxy-kde< 0.3.0-3.el6_3libproxy-kde-0.3.0-3.el6_3.i686.rpm
RedHat6i686libproxy-gnome< 0.3.0-3.el6_3libproxy-gnome-0.3.0-3.el6_3.i686.rpm
RedHat6s390xlibproxy-devel< 0.3.0-3.el6_3libproxy-devel-0.3.0-3.el6_3.s390x.rpm
RedHat6ppc64libproxy-devel< 0.3.0-3.el6_3libproxy-devel-0.3.0-3.el6_3.ppc64.rpm
RedHat6s390xlibproxy< 0.3.0-3.el6_3libproxy-0.3.0-3.el6_3.s390x.rpm
RedHat6x86_64libproxy-mozjs< 0.3.0-3.el6_3libproxy-mozjs-0.3.0-3.el6_3.x86_64.rpm
RedHat6s390libproxy< 0.3.0-3.el6_3libproxy-0.3.0-3.el6_3.s390.rpm
Rows per page:
1-10 of 431

Related

oraclelinux 1
nessus 10
openvas 10
veracode 1
amazon 1
centos 1
securityvulns 2
debian 1
cvelist 1
ubuntu 1
cve 2
prion 1
ubuntucve 1
debiancve 1
oraclelinux
oraclelinux
libproxy security update
2012-11-14 00:00:00
nessus
nessus
Amazon Linux AMI : libproxy (ALAS-2012-140)
2013-09-04 00:00:00
CentOS 6 : libproxy (CESA-2012:1461)
2012-11-16 00:00:00
Oracle Linux 6 : libproxy (ELSA-2012-1461)
2013-07-12 00:00:00
openvas
openvas
CentOS Update for libproxy CESA-2012:1461 centos6
2012-11-15 00:00:00
RedHat Update for libproxy RHSA-2012:1461-01
2012-11-15 00:00:00
Debian Security Advisory DSA 2571-1 (libproxy)
2012-11-16 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:00:00
amazon
amazon
Medium: libproxy
2012-11-20 06:25:00
centos
centos
libproxy security update
2012-11-15 03:44:16
securityvulns
securityvulns
[SECURITY] [DSA 2571-1] libproxy security update
2012-11-06 00:00:00
libproxy buffer overflow
2012-11-26 00:00:00
debian
debian
[SECURITY] [DSA 2571-1] libproxy security update
2012-11-04 18:23:00
cvelist
cvelist
CVE-2012-4505
2012-11-11 11:00:00
ubuntu
ubuntu
libproxy vulnerabilities
2012-11-12 00:00:00
cve
cve
CVE-2012-4505
2012-11-11 13:00:00
CVE-2012-4521
2012-11-11 13:00:00
prion
prion
Heap overflow
2012-11-11 13:00:00
ubuntucve
ubuntucve
CVE-2012-4505
2012-10-12 00:00:00
debiancve
debiancve
CVE-2012-4505
2012-11-11 13:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.018 Low

EPSS

Percentile

86.9%

JSON
Related for RHSA-2012:1461
oraclelinux1nessus10openvas10veracode1amazon1centos1securityvulns2debian1cvelist1ubuntu1cve2prion1ubuntucve1debiancve1