CVE-2012-5580: Code Injection
First published: Mon Dec 03 2012(Updated: )
A format string flaw was reported [1] in libproxy's proxy commandline tool (bin/proxy). This was corrected upstream [2] and is included in the 0.4.0 release. FORTIFY_SOURCE turns this into a harmless crash: % http_proxy=<a href="http://foo%n.example.com/">http://foo%n.example.com/</a> proxy <a href="http://example.com">http://example.com</a> *** %n in writable segment detected *** <a href="http://foozsh">http://foozsh</a>: abort (core dumped) http_proxy=<a href="http://foo%n.example.com/">http://foo%n.example.com/</a> proxy <a href="http://example.com">http://example.com</a> NOTE: this flaw exists solely in the proxy tool, not the library. [1] <a href="https://bugzilla.novell.com/show_bug.cgi?id=791086">https://bugzilla.novell.com/show_bug.cgi?id=791086</a> [2] <a href="https://code.google.com/p/libproxy/source/detail?r=475">https://code.google.com/p/libproxy/source/detail?r=475</a>
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/libproxy | <0.4.0 | 0.4.0 |
| Oracle Libproxy | =0.3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/56712
- https://bugzilla.novell.com/show_bug.cgi?id=791086
- https://bugzilla.redhat.com/show_bug.cgi?id=883100
- https://code.google.com/p/libproxy/source/detail?r=475
- https://exchange.xforce.ibmcloud.com/vulnerabilities/80340
- http://foo%n.example.com/
- http://example.com
- http://foozsh
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=883100#c0
- https://access.redhat.com/security/updates/classification/
Frequently Asked Questions
What is the severity of CVE-2012-5580?
CVE-2012-5580 has a moderate to high severity level due to the potential for a format string vulnerability.
How do I fix CVE-2012-5580?
To fix CVE-2012-5580, you should upgrade libproxy to version 0.4.0 or later.
Which versions of libproxy are affected by CVE-2012-5580?
CVE-2012-5580 affects libproxy version 0.3.1 and earlier versions.
Is there a workaround for CVE-2012-5580?
No official workaround is recommended for CVE-2012-5580; upgrading is the best solution.
Who reported CVE-2012-5580?
CVE-2012-5580 was reported by a security researcher and discussed in public vulnerability databases.
- agent/type
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- collector/redhat-bugzilla
- source/Red Hat
- alias/CVE-2012-5580
- agent/software-canonical-lookup
- agent/severity
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/author
- agent/description
- agent/event
- agent/trending
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- package-manager/redhat
- vendor/libproxy project
- canonical/oracle libproxy
- version/oracle libproxy/0.3.1