Bug#689423: eglibc: CVE-2012-4424: stack overflow in strcoll()

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#689423: eglibc: CVE-2012-4424: stack overflow in strcoll()
From: Moritz Muehlenhoff <jmm@inutil.org>
Date: Tue, 02 Oct 2012 15:07:14 +0200
Message-id: <[🔎] 20121002130714.15012.89053.reportbug@m25s06.vlinux.de>
Reply-to: Moritz Muehlenhoff <jmm@inutil.org>, 689423@bugs.debian.org

Package: eglibc
Severity: important
Tags: security

Please see https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4424

There's no fix upstream yet: 
http://sourceware.org/bugzilla/show_bug.cgi?id=14547
http://sourceware.org/bugzilla/show_bug.cgi?id=14552

Cheers,
        Moritz

Reply to:

Prev by Date: [Bug stdio/6530] *printf() and incomplete multibyte sequences returns -1 bogusly
Next by Date: [Bug stdio/6530] *printf() and incomplete multibyte sequences returns -1 bogusly
Previous by thread: [Bug stdio/6530] *printf() and incomplete multibyte sequences returns -1 bogusly
Next by thread: [bts-link] source package eglibc
Index(es):
- Date
- Thread