What is the severity of CVE-2013-0223?

CVE-2013-0223 is classified as a moderate severity vulnerability.

How do I fix CVE-2013-0223?

To fix CVE-2013-0223, update the coreutils package to the latest version provided by your Linux distribution.

Which systems are affected by CVE-2013-0223?

CVE-2013-0223 affects openSUSE versions 11.4, 12.1, and 12.2, as well as Red Hat Enterprise Linux 6.0.

What does CVE-2013-0223 do?

CVE-2013-0223 causes the join command to experience a segmentation fault with extremely long strings when using the -i switch.

Is CVE-2013-0223 exploited in the wild?

As of the latest information, there are no known active exploits for CVE-2013-0223.

Vulnerability/
CVE-2013-0223

low

1.9

CWE

119

24/1/2013

23/11/2013

6/8/2024

CVE-2013-0223: Buffer Overflow

First published: Thu Jan 24 2013(Updated: )

It was reported [1] that the join command suffered from a segfault when processing input streams that contained extremely long strings when used with the -i switch. This flaw is due to the inclusion of the coreutils-i18n.patch. SUSE has fixed this by fixing the patch. The changes can be seen here [2]. (There is probably e better place to get the patch, but I don't know where). [1] <a href="https://bugzilla.novell.com/show_bug.cgi?id=798541">https://bugzilla.novell.com/show_bug.cgi?id=798541</a> [2] <a href="https://build.opensuse.org/request/show/149348#diff_headline_coreutils-i18n-patch_diff_action_0_submit_0_19">https://build.opensuse.org/request/show/149348#diff_headline_coreutils-i18n-patch_diff_action_0_submit_0_19</a> Statement: (none)

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
SUSE Linux	=11.4
SUSE Linux	=12.1
SUSE Linux	=12.2
Red Hat Enterprise Linux	=6.0

Remedy

https://build.opensuse.org/request/show/149348#diff_headline_coreutils-i18n-patch_diff_action_0_submit_0_19

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-0223?
CVE-2013-0223 is classified as a moderate severity vulnerability.
How do I fix CVE-2013-0223?
To fix CVE-2013-0223, update the coreutils package to the latest version provided by your Linux distribution.
Which systems are affected by CVE-2013-0223?
CVE-2013-0223 affects openSUSE versions 11.4, 12.1, and 12.2, as well as Red Hat Enterprise Linux 6.0.
What does CVE-2013-0223 do?
CVE-2013-0223 causes the join command to experience a segmentation fault with extremely long strings when using the -i switch.
Is CVE-2013-0223 exploited in the wild?
As of the latest information, there are no known active exploits for CVE-2013-0223.

agent/type
agent/first-publish-date
agent/references
agent/severity
agent/remedy
agent/author
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2013-0223
agent/trending
agent/weakness
agent/source
agent/tags
agent/softwarecombine
collector/nvd-index
agent/software-canonical-lookup-request
vendor/opensuse
canonical/suse linux
version/suse linux/11.4
version/suse linux/12.1
version/suse linux/12.2
vendor/redhat
canonical/red hat enterprise linux
version/red hat enterprise linux/6.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.