Launchpad CVE tracker

CVE 2010-2799

Stack-based buffer overflow in the nestlex function in nestlex.c in Socat 1.5.0.0 through 1.7.1.2 and 2.0.0-b1 through 2.0.0-b3, when bidirectional data relay is enabled, allows context-dependent attackers to execute arbitrary code via long command-line arguments.

Related bugs and status

CVE-2010-2799 (Candidate) is related to these bugs:

Bug #613761: Sync socat 1.7.1.3-1 (universe) from Debian unstable (main)

Summary				In	Importance	Status
	613761	Sync socat 1.7.1.3-1 (universe) from Debian unstable (main)		socat (Ubuntu)	Wishlist	Fix Released

Bug #829234: [MIR] socat

Summary				In	Importance	Status
	829234	[MIR] socat		socat (Ubuntu)	Undecided	Won't Fix

Bug #1020166: Patch socat on lucid to address CVE-2010-2799

Summary				In	Importance	Status
	1020166	Patch socat on lucid to address CVE-2010-2799		socat (Ubuntu)	Undecided	Expired

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.debian.org/...
MISC: http://bugs.debian.org...
MISC: http://bugs.gentoo.org...
MISC: http://www.dest-unreac...
MISC: http://www.dest-unreac...
MISC: https://bugzilla.redha...

Launchpad.net

CVE 2010-2799

Related bugs and status

Related bugs

References