CVE-2012-3417

Published: Aug 13, 2012

Modified: Aug 6, 2024

PUBLISHED

Description

The good_client function in rquotad (rquota_svc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2012:1058

vendor-advisory

x_refsource_SUSE

https://bugzilla.redhat.com/show_bug.cgi?id=566717

x_refsource_MISC

[oss-security] 20120719 CVE Request: quota: incorrect use of tcp_wrappers

mailing-list

x_refsource_MLIST

RHSA-2013:0120

vendor-advisory

x_refsource_REDHAT

[oss-security] 20120719 Re: CVE Request: quota: incorrect use of tcp_wrappers

mailing-list

x_refsource_MLIST

http://linuxquota.git.sourceforge.net/git/gitweb.cgi?p=linuxquota/linuxquota%3Ba=commitdiff%3Bh=0abbfe92536fa5854eb65572de0cf131f80e2387

x_refsource_CONFIRM

http://sourceforge.net/tracker/?func=detail&aid=2743481&group_id=18136&atid=118136

x_refsource_CONFIRM

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10705

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2012-3417

Description

Affected Products

References