Buffer overflow in Dest-unreach Socat
CVE-2012-0219
Heap-based buffer overflow in the xioscan_readline function in xio-readline.c in socat 1.4.0.0 through 1.7.2.0 and 2.0.0-b1 through 2.0.0-b4 allows local users to execute arbitrary code via the READLINE address.
Vulnerability class: Buffer Overflow
EPSS: 0.005 (36.2th percentile) — read the EPSS interpretation.
Affected products
- Dest-unreach Socat — versions 1.4.0.0, 1.4.0.1, 1.4.0.2
- N/a — versions n/a
Weakness classification (CWE)
References
- security@debian.org (x_refsource_SECUNIA, third-party-advisory)
- security@debian.org (vdb-entry, x_refsource_SECTRACK)
- security@debian.org (vendor-advisory, x_refsource_FEDORA)
- security@debian.org (vendor-advisory, x_refsource_GENTOO)
- security@debian.org (x_refsource_CONFIRM, Patch, Vendor Advisory)
- security@debian.org (vendor-advisory, x_refsource_FEDORA)
- security@debian.org (vendor-advisory, x_refsource_SUSE)
- security@debian.org (vdb-entry, x_refsource_BID)
- security@debian.org (vendor-advisory, x_refsource_MANDRIVA)
- security@debian.org (x_refsource_OSVDB, vdb-entry)