Lucene search
UbuntuUSN-1546-1HistoryAug 28, 2012 - 12:00 a.m.
libgc vulnerability
2012-08-2800:00:00
ubuntu.com
30
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.2
Confidence
High
EPSS
0.007
Percentile
80.9%
Releases
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 11.04
- Ubuntu 10.04
- Ubuntu 8.04
Packages
- libgc - Boehm-Demers-Weiser garbage collecting storage allocator library
Details
It was discovered that multiple integer overflows existed in the
malloc and calloc implementations in the Boehm-Demers-Weiser garbage
collecting memory allocator (libgc). These could allow an attacker
to cause a denial of service or possibly execute arbitrary code.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | libgc1c2 | < 1:6.8-1.1ubuntu0.1 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libgc-dev | < 1:6.8-1.1ubuntu0.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libgc1c2 | < 1:7.1-8ubuntu0.12.04.1 | UNKNOWN |
| Ubuntu | 12.04 | noarch | libgc-dev | < 1:7.1-8ubuntu0.12.04.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libgc1c2 | < 1:7.1-8ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.10 | noarch | libgc-dev | < 1:7.1-8ubuntu0.11.10.1 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libgc1c2 | < 1:6.8-1.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 11.04 | noarch | libgc-dev | < 1:6.8-1.2ubuntu3.2 | UNKNOWN |
| Ubuntu | 10.04 | noarch | libgc1c2 | < 1:6.8-1.2ubuntu1.1 | UNKNOWN |
| Ubuntu | 10.04 | noarch | libgc-dev | < 1:6.8-1.2ubuntu1.1 | UNKNOWN |
References
Related
openvas
openvas
RedHat Update for gc RHSA-2013:1500-01
2013-11-08 00:00:00
CentOS Update for gc CESA-2013:1500 centos6
2013-11-08 00:00:00
Fedora Update for gc FEDORA-2012-9637
2012-06-28 00:00:00
oraclelinux
oraclelinux
gc security update
2013-11-04 00:00:00
debiancve
debiancve
CVE-2012-2673
2012-07-25 19:55:02
veracode
veracode
Denial Of Service
2019-01-15 09:01:28
amazon
amazon
Medium: gc
2013-11-04 14:53:00
nessus
nessus
Fedora 16 : gc-7.2b-2.fc16 (2012-9637)
2012-06-28 00:00:00
RHEL 5 : spacewalk in Satellite Server (RHSA-2014:0149)
2014-11-08 00:00:00
Amazon Linux AMI : gc (ALAS-2013-245)
2013-11-14 00:00:00
nvd
nvd
CVE-2012-2673
2012-07-25 19:55:02
ubuntucve
ubuntucve
CVE-2012-2673
2012-07-25 00:00:00
redhat
redhat
(RHSA-2014:0150) Moderate: gc security update
2014-02-10 00:00:00
(RHSA-2014:0149) Moderate: gc security update
2014-02-10 00:00:00
(RHSA-2013:1500) Moderate: gc security update
2013-11-04 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: gc-7.2b-2.fc17
2012-06-28 03:22:28
[SECURITY] Fedora 16 Update: gc-7.2b-2.fc16
2012-06-28 03:44:21
cve
cve
CVE-2012-2673
2012-07-25 19:55:02
prion
prion
Integer overflow
2012-07-25 19:55:00
centos
centos
gc security update
2013-11-04 19:32:13
securityvulns
securityvulns
libgc integer overflows
2012-08-29 00:00:00
cvelist
cvelist
CVE-2012-2673
2012-07-25 19:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
AI Score
7.2
Confidence
High
EPSS
0.007
Percentile
80.9%
Related for USN-1546-1