Published: 05/12/2014 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

iconvdata/ibm930.c in GNU C Library (aka glibc) prior to 2.16 allows context-dependent malicious users to cause a denial of service (out-of-bounds read) via a multibyte character value of "0xffff" to the iconv function when converting IBM930 encoded data to UTF-8.

Vulnerable Product	Search on Vulmon	Subscribe to Product
debian debian linux 7.0
canonical ubuntu linux 12.04
canonical ubuntu linux 14.10
canonical ubuntu linux 14.04
canonical ubuntu linux 10.04
gnu glibc

The GNU C Library could be made to crash or run programs ...

Several vulnerabilities have been fixed in eglibc, Debian's version of the GNU C library: CVE-2015-0235 Qualys discovered that the gethostbyname and gethostbyname2 functions were subject to a buffer overflow if provided with a crafted IP address argument This could be used by an attacker to execute arbitrary code in processes whic ...

CWE-20 http://www.ubuntu.com/usn/USN-2432-1 http://www.securityfocus.com/bid/69472 http://www.openwall.com/lists/oss-security/2014/09/02/1 http://www.mandriva.com/security/advisories?name=MDVSA-2014:175 https://sourceware.org/bugzilla/show_bug.cgi?id=14134 http://www.openwall.com/lists/oss-security/2014/08/29/3 http://www.debian.org/security/2015/dsa-3142 https://security.gentoo.org/glsa/201503-04 https://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=6e230d11837f3ae7b375ea69d7905f0d18eb79e5 https://usn.ubuntu.com/2432-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-6656

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect