Описание
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 4.2.31-1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | released | 4.2.31-1 |
| hardy | released | 4.2.31-1 |
| intrepid | released | 4.2.31-1 |
| jaunty | released | 4.2.31-1 |
| karmic | released | 4.2.31-1 |
| lucid | released | 4.2.31-1 |
Показывать по
Ссылки на источники
EPSS
6 Medium
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
Heap-based buffer overflow in the visit_old_format function in locate/ ...
Heap-based buffer overflow in the visit_old_format function in locate/locate.c in locate in GNU findutils before 4.2.31 might allow context-dependent attackers to execute arbitrary code via a long pathname in a locate database that has the old format, a different vulnerability than CVE-2001-1036.
EPSS
6 Medium
CVSS2