CVE-2012-2677
25.07.2012, 19:55
Integer overflow in the ordered_malloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| boost | pool | 𝑥 ≤ 1.0.0 |
| boost | pool | 2.0.0 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| boost |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.40 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.42 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.46 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.48 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.49 |
| ||||||||||||||||||||||||||||||||||||||||||||||
| boost1.50 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||
|---|---|---|---|
| boost |
| ||
| boost-date-time |
| ||
| boost-devel |
| ||
| boost-doc |
| ||
| boost-filesystem |
| ||
| boost-graph |
| ||
| boost-graph-mpich2 |
| ||
| boost-graph-openmpi |
| ||
| boost-iostreams |
| ||
| boost-math |
| ||
| boost-mpich2 |
| ||
| boost-mpich2-devel |
| ||
| boost-mpich2-python |
| ||
| boost-openmpi |
| ||
| boost-openmpi-devel |
| ||
| boost-openmpi-python |
| ||
| boost-program-options |
| ||
| boost-python |
| ||
| boost-regex |
| ||
| boost-serialization |
| ||
| boost-signals |
| ||
| boost-static |
| ||
| boost-system |
| ||
| boost-test |
| ||
| boost-thread |
| ||
| boost-wave |
|
Common Weakness Enumeration
References