QwikSec

Security Database

CVE

CWE

Training

CVE-2009-4012

Published: Jan 19, 2010

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in LibThai before 0.1.13 might allow context-dependent attackers to execute arbitrary code via long strings that trigger heap-based buffer overflows, related to (1) thbrk/thbrk.c and (2) thwbrk/thwbrk.c. NOTE: some of these details are obtained from third party information.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SECUNIA

vendor-advisory

x_refsource_DEBIAN

http://security.debian.org/pool/updates/main/libt/libthai/libthai_0.1.6-1+etch1.diff.gz

x_refsource_CONFIRM

vendor-advisory

x_refsource_UBUNTU

http://linux.thai.net/svn/software/libthai/tags/r_0_1_13/ChangeLog

x_refsource_CONFIRM

third-party-advisory

x_refsource_SECUNIA

http://security.debian.org/pool/updates/main/libt/libthai/libthai_0.1.9-4+lenny1.diff.gz

x_refsource_CONFIRM

SUSE-SR:2010:002

vendor-advisory

x_refsource_SUSE

http://linux.thai.net/node/184

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.