Novell Home

CVE-2012-4505

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2012-4505 at MITRE

Description

Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504.

NVD CVSS v2 Base Score: 10.0 (AV:N/AC:L/Au:N/C:C/I:C/A:C)

SUSE information

SUSE Bugzilla entry: 784523

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
SUSE Linux Enterprise Software Development Kit 11 SP2
  • libproxy-devel >= 0.3.1-2.6.1
sle11-sp2-sdk.ppc
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86
sled11-sp2.x86-64
sles11-sp2.ppc
sles11-sp2.s390x
sled11-sp2.x86
sles11-sp2-vmware.x86-64
sles11-sp2.x86
sle11-sp2-sdk.x86
sle11-sp2-sdk.ia64
sle11-sp2-sdk.s390x
sles11-sp2.ia64
sles11-sp2.x86-64
SAT Patch Nr: 7092
SUSE Linux Enterprise Desktop 11 SP2
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • libproxy0 >= 0.3.1-2.6.1
  • libproxy0-config-gnome >= 0.3.1-2.6.3
  • libproxy0-config-kde4 >= 0.3.1-2.6.3
  • libproxy0-networkmanager >= 0.3.1-2.6.3
sle11-sp2-sdk.ppc
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86
sled11-sp2.x86-64
sles11-sp2.ppc
sles11-sp2.s390x
sled11-sp2.x86
sles11-sp2-vmware.x86-64
sles11-sp2.x86
sle11-sp2-sdk.x86
sle11-sp2-sdk.ia64
sle11-sp2-sdk.s390x
sles11-sp2.ia64
sles11-sp2.x86-64
SAT Patch Nr: 7092
SUSE Linux Enterprise Desktop 11 SP2
  • libproxy0 >= 0.3.1-2.6.1
  • libproxy0-32bit >= 0.3.1-2.6.1
  • libproxy0-config-gnome >= 0.3.1-2.6.3
  • libproxy0-config-gnome-32bit >= 0.3.1-2.6.3
  • libproxy0-config-kde4 >= 0.3.1-2.6.3
  • libproxy0-networkmanager >= 0.3.1-2.6.3
  • libproxy0-networkmanager-32bit >= 0.3.1-2.6.3
sle11-sp2-sdk.ppc
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86
sled11-sp2.x86-64
sles11-sp2.ppc
sles11-sp2.s390x
sled11-sp2.x86
sles11-sp2-vmware.x86-64
sles11-sp2.x86
sle11-sp2-sdk.x86
sle11-sp2-sdk.ia64
sle11-sp2-sdk.s390x
sles11-sp2.ia64
sles11-sp2.x86-64
SAT Patch Nr: 7092
SUSE Linux Enterprise Server 11 SP2
SUSE Linux Enterprise Server 11 SP2 for VMware
  • libproxy0 >= 0.3.1-2.6.1
  • libproxy0-32bit >= 0.3.1-2.6.1
  • libproxy0-config-gnome >= 0.3.1-2.6.3
  • libproxy0-config-kde4 >= 0.3.1-2.6.3
  • libproxy0-networkmanager >= 0.3.1-2.6.3
sle11-sp2-sdk.ppc
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86
sled11-sp2.x86-64
sles11-sp2.ppc
sles11-sp2.s390x
sled11-sp2.x86
sles11-sp2-vmware.x86-64
sles11-sp2.x86
sle11-sp2-sdk.x86
sle11-sp2-sdk.ia64
sle11-sp2-sdk.s390x
sles11-sp2.ia64
sles11-sp2.x86-64
SAT Patch Nr: 7092
SUSE Linux Enterprise Server 11 SP2
  • libproxy0 >= 0.3.1-2.6.1
  • libproxy0-config-gnome >= 0.3.1-2.6.3
  • libproxy0-config-kde4 >= 0.3.1-2.6.3
  • libproxy0-networkmanager >= 0.3.1-2.6.3
  • libproxy0-x86 >= 0.3.1-2.6.1
sle11-sp2-sdk.ppc
sle11-sp2-sdk.x86-64
sles11-sp2-vmware.x86
sled11-sp2.x86-64
sles11-sp2.ppc
sles11-sp2.s390x
sled11-sp2.x86
sles11-sp2-vmware.x86-64
sles11-sp2.x86
sle11-sp2-sdk.x86
sle11-sp2-sdk.ia64
sle11-sp2-sdk.s390x
sles11-sp2.ia64
sles11-sp2.x86-64
SAT Patch Nr: 7092
openSUSE 11.4
  • libproxy >= 0.4.7-6.28.1
  • libproxy-debugsource >= 0.4.7-6.28.1
  • libproxy-devel >= 0.4.7-6.28.1
  • libproxy-plugins >= 0.4.7-6.28.1
  • libproxy-plugins-debugsource >= 0.4.7-6.28.1
  • libproxy-sharp >= 0.4.7-6.28.1
  • libproxy-tools >= 0.4.7-6.28.1
  • libproxy-tools-debuginfo >= 0.4.7-6.28.1
  • libproxy1 >= 0.4.7-6.28.1
  • libproxy1-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome >= 0.4.7-6.28.1
  • libproxy1-config-gnome-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-config-gnome-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-config-gnome-x86 >= 0.4.7-6.28.1
  • libproxy1-config-kde4 >= 0.4.7-6.28.1
  • libproxy1-config-kde4-debuginfo >= 0.4.7-6.28.1
  • libproxy1-debuginfo >= 0.4.7-6.28.1
  • libproxy1-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-networkmanager >= 0.4.7-6.28.1
  • libproxy1-networkmanager-32bit >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-networkmanager-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-networkmanager-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-mozjs-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo-32bit >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-debuginfo-x86 >= 0.4.7-6.28.1
  • libproxy1-pacrunner-webkit-x86 >= 0.4.7-6.28.1
  • libproxy1-x86 >= 0.4.7-6.28.1
  • perl-Net-Libproxy >= 0.4.7-6.28.1
  • perl-Net-Libproxy-debuginfo >= 0.4.7-6.28.1
  • python-libproxy >= 0.4.7-6.28.1
Patchnames:
openSUSE-2012-720

© 2015 Novell