Launchpad CVE tracker

CVE 2012-5667

Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that triggers a heap-based buffer overflow.

Related bugs and status

CVE-2012-5667 (Candidate) is related to these bugs:

Bug #1091473: grep <2.11 is vulnerable to "Arbitrary command execution"

		In	Importance	Status
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu)	Undecided	Fix Released
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Lucid)	Undecided	Won't Fix
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Precise)	Undecided	Won't Fix
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Quantal)	Undecided	Fix Released
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Hardy)	Undecided	Won't Fix
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Oneiric)	Undecided	Won't Fix
1091473	grep <2.11 is vulnerable to "Arbitrary command execution"	grep (Ubuntu Raring)	Undecided	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2012-5667

References