CVE-2011-5280

EUVD-2011-5179
Multiple stack-based buffer overflows in BOINC 6.13.x allow remote attackers to cause a denial of service (crash) via a long trickle-up to (1) client/cs_trickle.cpp or (2) db/db_base.cpp.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:P
Base Score
CVSS 3.x
EPSS Score
Percentile: 68%
Affected Products (NVD)
VendorProductVersion
universityofcaliforniaboinc_client
6.13.0
universityofcaliforniaboinc_client
6.13.1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
boinc
bookworm
7.20.5+dfsg-1.1
fixed
bullseye
7.16.16+dfsg-1
fixed
sid
8.0.4+dfsg-1
fixed
squeeze
no-dsa
trixie
8.0.4+dfsg-1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
boinc
lucid
ignored
precise
not-affected
saucy
not-affected
trusty
dne
Common Weakness Enumeration
References
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7
http://www.openwall.com/lists/oss-security/2013/04/28/3
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=5b04b249db166ec38c1ee99a9eadcaa300c0f454
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git%3Ba=commitdiff%3Bh=ae04b50a71f3e96ee1bc59b76fca97cf0fe976f7
http://www.openwall.com/lists/oss-security/2013/04/28/3