CVE-2013-0221
Summary
| CVE | CVE-2013-0221 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2013-11-23 18:55:00 UTC |
|---|
| Updated | 2023-02-13 04:39:00 UTC |
|---|
| Description | The SUSE coreutils-i18n.patch for GNU coreutils allows context-dependent attackers to cause a denial of service (segmentation fault and crash) via a long string to the sort command, when using the (1) -d or (2) -M switch, which triggers a stack-based buffer overflow in the alloca function. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| Bug 798538 – VUL-1: CVE-2013-0221: coreutils: segmentation fault in "sort -d" and "sort -M" with long line input |
CONFIRM |
bugzilla.novell.com |
Exploit |
| access.redhat.com | CVE-2013-0221 |
MISC |
access.redhat.com |
|
| 903464 – (CVE-2013-0221) CVE-2013-0221 coreutils: segfault in "sort -d" and "sort -M" with long line input |
CONFIRM |
bugzilla.redhat.com |
|
| Red Hat Customer Portal |
MISC |
access.redhat.com |
|
| Request 149348 -
openSUSE Build Service |
CONFIRM |
build.opensuse.org |
Exploit, Patch |
| Red Hat Customer Portal |
REDHAT |
rhn.redhat.com |
Vendor Advisory |
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 900195 CBL-Mariner Linux Security Update for coreutils 8.30
- 903557 Common Base Linux Mariner (CBL-Mariner) Security Update for coreutils (2574)
- 905759 Common Base Linux Mariner (CBL-Mariner) Security Update for coreutils (2574-1)
