34 matches found
Security Bulletin: DataStage on Cloud Pak for Data is vulnerable to stack overflows due to the unixODBC package (CVE-2024-1013)
Summary unixODBC is used by DataStage on Cloud Pak for Data as part of database communication. Vulnerability Details CVEID:CVE-2024-1013 DESCRIPTION: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue...
Linux Distros Unpatched Vulnerability : CVE-2024-1013
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go...
NewStart CGSL MAIN 7.02 : unixODBC Vulnerability (NS-SA-2025-0116)
The remote NewStart CGSL host, running version MAIN 7.02, has unixODBC packages installed that are affected by a vulnerability: - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on...
CVE-2024-1013 vulnerabilities
Vulnerabilities for packages: unixodbc...
Azure Linux 3.0 Security Update: unixODBC (CVE-2024-1013)
The version of unixODBC installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1013 advisory. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 byte...
SUSE: Security Advisory (SUSE-SU-2024:2978-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLES12: libodbc2 / libodbc2-32bit / unixODBC / unixODBC-32bit / etc (SUSE-SU-2024:2978-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:2978-1 advisory. - CVE-2024-1013: Fixed out of bounds stack write due to pointer-to-integer types conversion on 64-bit architectures bsc1228143 Tenable has...
SUSE-SU-2024:2978-1 Security update for unixODBC
This update for unixODBC fixes the following issues: - CVE-2024-1013: Fixed out of bounds stack write due to pointer-to-integer types conversion on 64-bit architectures bsc1228143...
Photon OS 5.0: Unixodbc PHSA-2024-5.0-0256
An update of the unixODBC package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-5.0-0256. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...
CBL Mariner 2.0 Security Update: unixODBC (CVE-2024-1013)
The version of unixODBC installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1013 advisory. - An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 byte...
CVE-2024-1013 affecting package unixODBC for versions less than 2.3.12-2
CVE-2024-1013 affecting package unixODBC for versions less than 2.3.12-2. A patched version of the package is available...
Medium: unixODBC
Issue Overview: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can be broken. CVE-2024-1013 Affected Packages: unixOD...
Medium: unixODBC
Issue Overview: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can be broken. CVE-2024-1013 Affected Packages: unixOD...
Medium: unixODBC
Issue Overview: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can be broken. CVE-2024-1013 Affected Packages: unixOD...
Amazon Linux 2 : unixODBC (ALAS-2024-2565)
The version of unixODBC installed on the remote host is prior to 2.3.1-15. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2565 advisory. An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8...
Amazon Linux 2023 : unixODBC, unixODBC-devel (ALAS2023-2024-641)
It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2024-641 advisory. An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while...
RHEL 7 : unixodbc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - unixODBC: out of bounds stack write due to pointer-to-integer types conversion CVE-2024-1013 Note that Nessus has n...
RHEL 6 : unixodbc (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - unixODBC: Insecure buffer copy in SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c CVE-2018-7485 - ...
OESA-2024-1374 unixODBC security update
The unixODBC Project goals are to develop and promote unixODBC to be the definitive standard for ODBC on non MS Windows platforms. This is to include GUI support for both KDE and GNOME. Security Fixes: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the calle...
OESA-2024-1371 unixODBC security update
The unixODBC Project goals are to develop and promote unixODBC to be the definitive standard for ODBC on non MS Windows platforms. This is to include GUI support for both KDE and GNOME. Security Fixes: An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the calle...