| Revision Date: | 2022-06-30 | Version: | 1 |
| Title: | CVE-2012-4465 |
| Description: |
Heap-based buffer overflow in the substr function in parsing.c in cgit 0.9.0.3 and earlier allows remote authenticated users to cause a denial of service (crash) and possibly execute arbitrary code via an empty username in the "Author" field in a commit.
|
| Family: | unix | Class: | vulnerability |
| Status: | | Reference(s): | CVE-2012-4465
Mitre CVE-2012-4465
SUSE CVE-2012-4465
openSUSE-SU-2012:1421-1
openSUSE-SU-2012:1422-1
|
| Platform(s): | openSUSE 12.1
openSUSE 12.1 Update
openSUSE 12.2 Update
openSUSE Tumbleweed
| Product(s): | |
| Definition Synopsis |
| cgit-0.9.0.2-14.4.1 is installed |
| Definition Synopsis |
| openSUSE Tumbleweed is installed
AND cgit-1.0-1.3 is installed
|