buffer overrun through UDP input
Bug #1243969 reported by
Saikrishna Arcot
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
flightgear (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned | ||
simgear (Ubuntu) |
Fix Released
|
Medium
|
Unassigned | ||
Precise |
Won't Fix
|
Medium
|
Unassigned |
Bug Description
This is in regards to CVE 2012-2091. In short, a crafted UDP packet could be sent to flightgear which would then cause a crash in simgear. This would then cause a crash in flightgear. This bug affects both flightgear and simgear in all releases except Saucy and Trusty.
CVE References
information type: | Private Security → Public Security |
Changed in simgear (Ubuntu): | |
status: | New → Confirmed |
Changed in flightgear (Ubuntu): | |
importance: | Undecided → Medium |
Changed in simgear (Ubuntu): | |
importance: | Undecided → Medium |
Changed in simgear (Ubuntu Precise): | |
importance: | Undecided → Medium |
Changed in flightgear (Ubuntu Precise): | |
importance: | Undecided → Medium |
To post a comment you must log in.
Here's a debdiff of the sources in Raring.
I have built this package in sbuild for Raring and it compiles successfully. I was able to install the base flightgear and simgear packages in Raring and was able to upgrade to the built debs.