Lucene search

K
ubuntucveUbuntu.comUB:CVE-2013-0242
HistoryFeb 08, 2013 - 12:00 a.m.

CVE-2013-0242

2013-02-0800:00:00
ubuntu.com
ubuntu.com
17

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.009 Low

EPSS

Percentile

82.3%

Buffer overflow in the extend_buffers function in the regular expression
matcher (posix/regexec.c) in glibc, possibly 2.17 and earlier, allows
context-dependent attackers to cause a denial of service (memory corruption
and crash) via crafted multibyte characters.

Bugs

Notes

Author Note
sbeattie infinity is going to roll this into an SRU that he’ll push through the ubuntu-security-proposed ppa
OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarcheglibc< 2.11.1-0ubuntu7.13UNKNOWN
ubuntu12.04noarcheglibc< 2.15-0ubuntu10.5UNKNOWN
ubuntu12.10noarcheglibc< 2.15-0ubuntu20.2UNKNOWN
ubuntu13.04noarcheglibc< 2.17-0ubuntu5.1UNKNOWN

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.009 Low

EPSS

Percentile

82.3%