CVE-2012-2677 affecting package ceph for versions less than 18.2.2-1

CVE-2012-2677 affecting package ceph for versions less than 18.2.2-1. A patched version of the package is available...

CVE-2012-2677 affecting package mysql for versions less than 8.0.40-4

CVE-2012-2677 affecting package mysql for versions less than 8.0.40-4. A patched version of the package is available...

Security Bulletin: Multiple vulnerabilities in IBM Db2 may affect IBM Storage Protect Server ( CVE-2023-38729, CVE-2012-2677, CVE-2024-25030, CVE-2024-25046, CVE-2024-27254, CVE-2023-52296)

Summary IBM Storage Protect Server uses IBM Db2 and may be affected by multiple vulnerabilities which could lead to denial of service, loss of confidentiality, integrity or availability. CVE-2023-38729, CVE-2012-2677, CVE-2024-25030, CVE-2024-25046, CVE-2024-27254, CVE-2023-52296. This bulletin...

Security Bulletin: IBM® Db2® is affected by a vulnerability in an open source library boost (CVE-2012-2677)

Summary IBM® Db2® is affected by a vulnerability in an open source library boost. Vulnerability Details CVEID:CVE-2012-2677 DESCRIPTION: Boost is vulnerable to a buffer overflow, caused by improper bounds checking by the orderedmalloc function. By persuading a victim to open a specially-crafted...

Security Bulletin: Multiple security vulnerabilities have been identified in IBM DB2 which is shipped with IBM Intelligent Operations Center.

Summary IBM DB2 shipped with IBM Intelligent Operations Center. Information about security vulnerabilities affecting IBM DB2 has been published in a security bulletin CVE-2023-38729, CVE-2012-2677, CVE-2024-25030, CVE-2024-25046, CVE-2024-27254, CVE-2023-52296, CVE-2024-22360 Vulnerability Detail...

K16946: Boost memory allocator vulnerability CVE-2012-2677

Security Advisory Description Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to ...

SUSE: Security Advisory (SUSE-SU-2012:0882-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

F5 Networks BIG-IP : Boost memory allocator vulnerability (K16946)

Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...

SOL16946 - Boost memory allocator vulnerability CVE-2012-2677

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

CentOS Update for boost CESA-2013:0668 centos6

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

RedHat Update for boost RHSA-2013:0668-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...

CentOS Update for boost CESA-2013:0668 centos5

Check for the Version of boost OpenVAS Vulnerability Test CentOS Update for boost CESA-2013:0668 centos5 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Scientific Linux Security Update : boost on SL5.x, SL6.x i386/x86_64 (20130321)

A flaw was found in the way the orderedmalloc routine in Boost sanitized the 'nextsize' and 'maxsize' parameters when allocating memory. If an application used the Boost C++ libraries for memory allocation, and performed memory allocation based on user-supplied input, an attacker could use this...

SuSE 11.1 Security Update : boost (SAT Patch Number 6507)

The following issue has been fixed : - boost::pool's orderedmalloc could have overflowed when calculating the allocation size. CVE-2012-2677 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from SuSE 11 update information...

CVE-2012-2677

Integer overflow in the orderedmalloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected...

CVE-2012-2677

CVE-2012-2677 : Boost Pool up to version 3.9 is affected. An integer overflow in the ordered_malloc function within boost/pool/pool.hpp can cause the allocator to reserve less memory than requested, enabling memory-related attacks. Remediation per connected documents: upgrade to Boost Pool 3.9+ (...