CVE-2012-0698: Input Validation
First published: Sat Jan 14 2012(Updated: )
From Andy Lutomirski The attached Python script will segfault tcsd. This particular vulnerability is a read from an attacker-controlled address, so getting anything more severe than information disclosure out of it may be difficult. But there is a lot of fishy input validation, and it may be possible to persuade the code to write out of bounds as well. It is certainly possible to cause memory allocation failures, but I haven't seen one that's unchecked yet. Upstream report (currently private) here: <a href="https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012">https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012</a>
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/trousers | <0.3.9 | 0.3.9 |
| Trousers | <=0.3.9 | |
| Trousers | =0.2.8 | |
| Trousers | =0.2.9 | |
| Trousers | =0.2.9.1 | |
| Trousers | =0.2.9.2 | |
| Trousers | =0.3.0 | |
| Trousers | =0.3.1 | |
| Trousers | =0.3.2 | |
| Trousers | =0.3.3 | |
| Trousers | =0.3.4 | |
| Trousers | =0.3.5 | |
| Trousers | =0.3.6 | |
| Trousers | =0.3.7 | |
| Trousers | =0.3.8 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://sourceforge.net/tracker/?func=detail&atid=704358&aid=3473554&group_id=126012
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781637
- https://access.redhat.com/security/cve/CVE-2012-0698
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781666
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=781648#c3
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers;a=commit;h=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
- https://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
- https://access.redhat.com/security/updates/classification/
- https://rhn.redhat.com/errata/RHSA-2014-1507.html
- https://bugzilla.redhat.com/show_bug.cgi?id=781648
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=692649
- http://packetstormsecurity.com/files/118281/TrouSerS-Denial-Of-Service.html
- http://secunia.com/advisories/51295
- http://sourceforge.net/tracker/index.php?func=detail&aid=3473554&group_id=126012&atid=704358
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers;a=commit;h=50dd06a6f639b76b3bb629606ef71b2dc5407601
- http://www.debian.org/security/2012/dsa-2576
- http://www.exploit-db.com/exploits/22904/
- https://blogs.oracle.com/sunsecurity/entry/cve_2012_0698_denial_of
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80226
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=50dd06a6f639b76b3bb629606ef71b2dc5407601
- http://trousers.git.sourceforge.net/git/gitweb.cgi?p=trousers/trousers%3Ba=commit%3Bh=ae0c2f8c1fd7a96ba0191f83b6057f8cbc51e786
Frequently Asked Questions
What is the severity of CVE-2012-0698?
CVE-2012-0698 has a low severity due to its limited impact primarily resulting in a segmentation fault.
How do I fix CVE-2012-0698?
To fix CVE-2012-0698, update the TrouSerS package to version 0.3.9 or later.
What software is affected by CVE-2012-0698?
CVE-2012-0698 affects multiple versions of the TrouSerS package, specifically versions up to 0.3.9.
Can CVE-2012-0698 lead to data loss?
CVE-2012-0698 does not appear to facilitate data loss but may result in an application crash.
Is CVE-2012-0698 remotely exploitable?
CVE-2012-0698 is not considered remotely exploitable since it requires local access to trigger the vulnerability.
- agent/type
- agent/first-publish-date
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/event
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-0698
- agent/software-canonical-lookup
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/trustedcomputinggroup
- canonical/trousers
- version/trousers/0.3.9
- version/trousers/0.2.8
- version/trousers/0.2.9
- version/trousers/0.2.9.1
- version/trousers/0.2.9.2
- version/trousers/0.3.0
- version/trousers/0.3.1
- version/trousers/0.3.2
- version/trousers/0.3.3
- version/trousers/0.3.4
- version/trousers/0.3.5
- version/trousers/0.3.6
- version/trousers/0.3.7
- version/trousers/0.3.8