CVE-2009-5029

Integer overflow in the __tzfile_read function in glibc before 2.15 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted timezone (TZ) file, as demonstrated using vsftpd.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
Affected Products (NVD)
VendorProductVersion
gnuglibc
𝑥
≤ 2.14
gnuglibc
2.0
gnuglibc
2.0.1
gnuglibc
2.0.2
gnuglibc
2.0.3
gnuglibc
2.0.4
gnuglibc
2.0.5
gnuglibc
2.0.6
gnuglibc
2.1
gnuglibc
2.1.1
gnuglibc
2.1.1.6
gnuglibc
2.1.2
gnuglibc
2.1.3
gnuglibc
2.1.9
gnuglibc
2.13
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
glibc
bookworm
2.36-9+deb12u8
fixed
bookworm (security)
2.36-9+deb12u7
fixed
bullseye
2.31-13+deb11u11
fixed
bullseye (security)
2.31-13+deb11u10
fixed
sid
2.40-3
fixed
trixie
2.40-3
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
eglibc
hardy
dne
lucid
Fixed 2.11.1-0ubuntu7.10
released
maverick
Fixed 2.12.1-0ubuntu10.4
released
natty
Fixed 2.13-0ubuntu13.1
released
oneiric
Fixed 2.13-20ubuntu5.1
released
glibc
hardy
Fixed 2.7-10ubuntu8.1
released
lucid
dne
maverick
dne
natty
dne
oneiric
dne
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
glibc
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-32bit
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise desktop 15 SP2
2.26-8.21
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 15 SP2
2.26-8.21
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
suse enterprise server 15 SP2
2.26-8.21
fixed
glibc-devel
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-devel-32bit
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-8.21
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-8.21
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-8.21
fixed
glibc-devel-static
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-extra
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-html
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
glibc-i18ndata
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-info
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-locale
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-locale-32bit
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-8.21
fixed
suse enterprise desktop 15 SP2
2.26-8.21
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-8.21
fixed
suse enterprise sap 15 SP2
2.26-8.21
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-8.21
fixed
suse enterprise server 15 SP2
2.26-8.21
fixed
glibc-locale-base
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-profile
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
glibc-profile-32bit
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
glibc-utils
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
nscd
suse enterprise desktop 15
2.26-11.8
fixed
suse enterprise desktop 15 SP1
2.26-13.19.1
fixed
suse enterprise sap 12 SP5
2.22-100.15.4
fixed
suse enterprise sap 15
2.26-11.8
fixed
suse enterprise sap 15 SP1
2.26-13.19.1
fixed
suse enterprise server 12 SP5
2.22-100.15.4
fixed
suse enterprise server 15
2.26-11.8
fixed
suse enterprise server 15 SP1
2.26-13.19.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
glibc
RHEL 6
0:2.12-1.47.el6_2.5
fixed
glibc-common
RHEL 6
0:2.12-1.47.el6_2.5
fixed
glibc-devel
RHEL 6
0:2.12-1.47.el6_2.5
fixed
glibc-headers
RHEL 6
0:2.12-1.47.el6_2.5
fixed
glibc-static
RHEL 6
0:2.12-1.47.el6_2.5
fixed
glibc-utils
RHEL 6
0:2.12-1.47.el6_2.5
fixed
nscd
RHEL 6
0:2.12-1.47.el6_2.5
fixed
Common Weakness Enumeration
References
http://dividead.wordpress.com/2009/06/01/glibc-timezone-integer-overflow/
http://lists.grok.org.uk/pipermail/full-disclosure/2011-December/084452.html
http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=97ac2654b2d831acaa18a2b018b0736245903fd2
http://sourceware.org/ml/libc-alpha/2011-12/msg00037.html
https://bugzilla.redhat.com/show_bug.cgi?id=761245
http://dividead.wordpress.com/2009/06/01/glibc-timezone-integer-overflow/
http://lists.grok.org.uk/pipermail/full-disclosure/2011-December/084452.html
http://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=97ac2654b2d831acaa18a2b018b0736245903fd2
http://sourceware.org/ml/libc-alpha/2011-12/msg00037.html
https://bugzilla.redhat.com/show_bug.cgi?id=761245