CVE-2011-2702: Code Injection
First published: Mon Oct 27 2014(Updated: )
Integer signedness error in Glibc before 2.13 and eglibc before 2.13, when using Supplemental Streaming SIMD Extensions 3 (SSSE3) optimization, allows context-dependent attackers to execute arbitrary code via a negative length parameter to (1) memcpy-ssse3-rep.S, (2) memcpy-ssse3.S, or (3) memset-sse2.S in sysdeps/i386/i686/multiarch/, which triggers an out-of-bounds read, as demonstrated using the memcpy function.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU glibc | =2.12.1 | |
| GNU glibc | <=2.12.2 | |
| GNU glibc | =2.12 | |
| Gnu Eglibc | <=2.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://seclists.org/oss-sec/2011/q3/153
- http://seclists.org/oss-sec/2011/q3/123
- http://www.nodefense.org/eglibc.txt
- http://xorl.wordpress.com/2011/08/06/cve-2011-2702-eglibc-and-glibc-signedness-issue/
- http://www.osvdb.org/80718
- https://bugzilla.novell.com/show_bug.cgi?id=706915
- http://www.eglibc.org/cgi-bin/viewvc.cgi/trunk/libc/ChangeLog?view=markup&pathrev=10032
- https://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=a0ac24d98ace90d1ccba6a2f3e7d55600f2fdb6e
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/type
- agent/event
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/gnu
- canonical/gnu glibc
- version/gnu glibc/2.12.1
- version/gnu glibc/2.12.2
- version/gnu glibc/2.12
- canonical/gnu eglibc
- version/gnu eglibc/2.12