CVE-2012-2738 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4 UNKNOWN	NETWORK	LOW		AV:N/AC:L/Au:S/C:N/I:N/A:P
redhat	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 94%

Vendor	Product	Version
nalin_dahyabhai	vte	𝑥 ≤ 0.32.1
nalin_dahyabhai	vte	0.9.0
nalin_dahyabhai	vte	0.9.2
nalin_dahyabhai	vte	0.10
nalin_dahyabhai	vte	0.10.1
nalin_dahyabhai	vte	0.10.2
nalin_dahyabhai	vte	0.10.3
nalin_dahyabhai	vte	0.10.4
nalin_dahyabhai	vte	0.10.5
nalin_dahyabhai	vte	0.10.6
nalin_dahyabhai	vte	0.10.7
nalin_dahyabhai	vte	0.10.8
nalin_dahyabhai	vte	0.10.9
nalin_dahyabhai	vte	0.10.10
nalin_dahyabhai	vte	0.10.11
nalin_dahyabhai	vte	0.10.12
nalin_dahyabhai	vte	0.10.13
nalin_dahyabhai	vte	0.10.14
nalin_dahyabhai	vte	0.10.15
nalin_dahyabhai	vte	0.10.16
nalin_dahyabhai	vte	0.10.17
nalin_dahyabhai	vte	0.10.19
nalin_dahyabhai	vte	0.10.20
nalin_dahyabhai	vte	0.10.21
nalin_dahyabhai	vte	0.10.22
nalin_dahyabhai	vte	0.10.23
nalin_dahyabhai	vte	0.10.25
nalin_dahyabhai	vte	0.10.26
nalin_dahyabhai	vte	0.10.27
nalin_dahyabhai	vte	0.10.28
nalin_dahyabhai	vte	0.10.29
nalin_dahyabhai	vte	0.11.0
nalin_dahyabhai	vte	0.11.1
nalin_dahyabhai	vte	0.11.2
nalin_dahyabhai	vte	0.11.3
nalin_dahyabhai	vte	0.11.4
nalin_dahyabhai	vte	0.11.5
nalin_dahyabhai	vte	0.11.6
nalin_dahyabhai	vte	0.11.7
nalin_dahyabhai	vte	0.11.8
nalin_dahyabhai	vte	0.11.9
nalin_dahyabhai	vte	0.11.10
nalin_dahyabhai	vte	0.11.11
nalin_dahyabhai	vte	0.11.12
nalin_dahyabhai	vte	0.11.13
nalin_dahyabhai	vte	0.11.14
nalin_dahyabhai	vte	0.11.15
nalin_dahyabhai	vte	0.11.16
nalin_dahyabhai	vte	0.11.17
nalin_dahyabhai	vte	0.11.18
nalin_dahyabhai	vte	0.11.19
nalin_dahyabhai	vte	0.11.20
nalin_dahyabhai	vte	0.11.21
nalin_dahyabhai	vte	0.12.0
nalin_dahyabhai	vte	0.12.1
nalin_dahyabhai	vte	0.12.2
nalin_dahyabhai	vte	0.13.0
nalin_dahyabhai	vte	0.13.1
nalin_dahyabhai	vte	0.13.2
nalin_dahyabhai	vte	0.13.3
nalin_dahyabhai	vte	0.13.4
nalin_dahyabhai	vte	0.13.5
nalin_dahyabhai	vte	0.13.6
nalin_dahyabhai	vte	0.13.7
nalin_dahyabhai	vte	0.14.0
nalin_dahyabhai	vte	0.14.1
nalin_dahyabhai	vte	0.14.2
nalin_dahyabhai	vte	0.15.0
nalin_dahyabhai	vte	0.15.1
nalin_dahyabhai	vte	0.15.2
nalin_dahyabhai	vte	0.15.3
nalin_dahyabhai	vte	0.15.4
nalin_dahyabhai	vte	0.15.5
nalin_dahyabhai	vte	0.15.6
nalin_dahyabhai	vte	0.16.0
nalin_dahyabhai	vte	0.16.1
nalin_dahyabhai	vte	0.16.2
nalin_dahyabhai	vte	0.16.3
nalin_dahyabhai	vte	0.16.4
nalin_dahyabhai	vte	0.16.5
nalin_dahyabhai	vte	0.16.6
nalin_dahyabhai	vte	0.16.7
nalin_dahyabhai	vte	0.16.8
nalin_dahyabhai	vte	0.16.9
nalin_dahyabhai	vte	0.16.10
nalin_dahyabhai	vte	0.16.11
nalin_dahyabhai	vte	0.16.12
nalin_dahyabhai	vte	0.16.13
nalin_dahyabhai	vte	0.16.14
nalin_dahyabhai	vte	0.17.1
nalin_dahyabhai	vte	0.17.2
nalin_dahyabhai	vte	0.17.3
nalin_dahyabhai	vte	0.17.4
nalin_dahyabhai	vte	0.19.1
nalin_dahyabhai	vte	0.19.2
nalin_dahyabhai	vte	0.19.3
nalin_dahyabhai	vte	0.19.4
nalin_dahyabhai	vte	0.20.0
nalin_dahyabhai	vte	0.20.1
nalin_dahyabhai	vte	0.20.2
nalin_dahyabhai	vte	0.20.3
nalin_dahyabhai	vte	0.20.4
nalin_dahyabhai	vte	0.20.5
nalin_dahyabhai	vte	0.21.1
nalin_dahyabhai	vte	0.21.2
nalin_dahyabhai	vte	0.21.3
nalin_dahyabhai	vte	0.21.4
nalin_dahyabhai	vte	0.21.5
nalin_dahyabhai	vte	0.21.6
nalin_dahyabhai	vte	0.21.7
nalin_dahyabhai	vte	0.22.0
nalin_dahyabhai	vte	0.22.1
nalin_dahyabhai	vte	0.22.2
nalin_dahyabhai	vte	0.22.3
nalin_dahyabhai	vte	0.22.4
nalin_dahyabhai	vte	0.22.5
nalin_dahyabhai	vte	0.23.1
nalin_dahyabhai	vte	0.23.2
nalin_dahyabhai	vte	0.23.3
nalin_dahyabhai	vte	0.23.4
nalin_dahyabhai	vte	0.23.5
nalin_dahyabhai	vte	0.24.0
nalin_dahyabhai	vte	0.24.1
nalin_dahyabhai	vte	0.24.2
nalin_dahyabhai	vte	0.24.3
nalin_dahyabhai	vte	0.25.1
nalin_dahyabhai	vte	0.25.90
nalin_dahyabhai	vte	0.25.91
nalin_dahyabhai	vte	0.26.0
nalin_dahyabhai	vte	0.26.1
nalin_dahyabhai	vte	0.26.2
nalin_dahyabhai	vte	0.27.0
nalin_dahyabhai	vte	0.27.1
nalin_dahyabhai	vte	0.27.2
nalin_dahyabhai	vte	0.27.3
nalin_dahyabhai	vte	0.27.4
nalin_dahyabhai	vte	0.27.5
nalin_dahyabhai	vte	0.27.90
nalin_dahyabhai	vte	0.28.0
nalin_dahyabhai	vte	0.28.1
nalin_dahyabhai	vte	0.28.2
nalin_dahyabhai	vte	0.29.0
nalin_dahyabhai	vte	0.29.1
nalin_dahyabhai	vte	0.30.0
nalin_dahyabhai	vte	0.30.1
nalin_dahyabhai	vte	0.31.0
nalin_dahyabhai	vte	0.32.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

vte

bookworm	1:0.28.2-6 fixed
bullseye	1:0.28.2-6 fixed
sid	1:0.28.2-6.1 fixed
trixie	1:0.28.2-6.1 fixed

Ubuntu Releases

Ubuntu Product

Codename

vte

zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
utopic	not-affected
trusty	dne
saucy	ignored
raring	ignored
quantal	ignored
precise	ignored
oneiric	ignored
natty	ignored
lucid	ignored
hardy	ignored

Known Exploits!

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://ftp.gnome.org/pub/GNOME/sources/vte/0.32/vte-0.32.2.changes

http://ftp.gnome.org/pub/GNOME/sources/vte/0.32/vte-0.32.2.news

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083398.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083403.html

http://lists.opensuse.org/opensuse-updates/2012-08/msg00001.html

http://www.openwall.com/lists/oss-security/2012/05/23/6

http://www.openwall.com/lists/oss-security/2012/06/15/11

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

http://www.securityfocus.com/bid/54281

https://bugzilla.gnome.org/show_bug.cgi?id=676090

http://ftp.gnome.org/pub/GNOME/sources/vte/0.32/vte-0.32.2.changes

http://ftp.gnome.org/pub/GNOME/sources/vte/0.32/vte-0.32.2.news

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083398.html

http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083403.html

http://lists.opensuse.org/opensuse-updates/2012-08/msg00001.html

http://www.openwall.com/lists/oss-security/2012/05/23/6

http://www.openwall.com/lists/oss-security/2012/06/15/11

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

http://www.securityfocus.com/bid/54281

https://bugzilla.gnome.org/show_bug.cgi?id=676090