CVE-2012-4504

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-4504 at MITRE

Description

Stack-based buffer overflow in the url::get_pac function in url.cpp in libproxy 0.4.x before 0.4.9 allows remote servers to have an unspecified impact via a large proxy.pac file.

NVD CVSS v2 Base Score: 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)

SUSE information

SUSE Bugzilla entries: 784523, 795039

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.4
  • libproxy >= 0.4.7-6.28.1
  • libproxy-debugsource >= 0.4.7-6.28.1
  • libproxy-devel >= 0.4.7-6.28.1
  • libproxy-plugins >= 0.4.7-6.28.1
  • libproxy-plugins-debugsource >= 0.4.7-6.28.1
  • libproxy-sharp >= 0.4.7-6.28.1
  • libproxy-tools >= 0.4.7-6.28.1
  • libproxy-tools-debuginfo >= 0.4.7-6.28.1
  • libproxy1 >= 0.4.7-6.28.1
  • libproxy1-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome >= 0.4.7-6.28.1
  • libproxy1-config-gnome-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-config-gnome-x86 >= 0.4.7-6.28.1
  • libproxy1-config-kde4 >= 0.4.7-6.28.1
  • libproxy1-config-kde4-debuginfo >= 0.4.7-6.28.1
  • libproxy1-debuginfo >= 0.4.7-6.28.1
  • libproxy1-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-networkmanager >= 0.4.7-6.28.1
  • libproxy1-networkmanager-32bit >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-networkmanager-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-x86 >= 0.4.7-6.28.1
  • libproxy1-x86 >= 0.4.7-6.28.1
  • perl-Net-Libproxy >= 0.4.7-6.28.1
  • perl-Net-Libproxy-debuginfo >= 0.4.7-6.28.1
  • python-libproxy >= 0.4.7-6.28.1
Patchnames:
openSUSE-2012-720