3 matches found
SUSE CVE-2009-5029
Integer overflow in the tzfileread function in glibc before 2.15 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted timezone TZ file, as demonstrated using vsftpd...
CVE-2009-5029
Integer overflow in the tzfileread function in glibc before 2.15 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted timezone TZ file, as demonstrated using vsftpd...
glibc: __tzfile_read integer overflow to buffer overflow
An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library read timezone files. If a carefully-crafted timezone file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code wi...