CVE-2014-0019 :: Enginsight Vulnerability Database

Severity

UNKNOWN

AV:L/AC:M/Au:N/C:N/I:N/A:P

Atk. Vector

LOCAL

Atk. Complexity

MEDIUM

Base Score

CVSS 3.x

EPSS Score

Percentile: 5%

Vendor	Product	Version
dest-unreach	socat	2.0.0
dest-unreach	socat	2.0.0
dest-unreach	socat	2.0.0
dest-unreach	socat	2.0.0
dest-unreach	socat	2.0.0
dest-unreach	socat	2.0.0
opensuse	opensuse	13.1
dest-unreach	socat	1.3.0.0
dest-unreach	socat	1.3.0.1
dest-unreach	socat	1.3.1.0
dest-unreach	socat	1.3.2.0
dest-unreach	socat	1.3.2.1
dest-unreach	socat	1.3.2.2
dest-unreach	socat	1.4.0.0
dest-unreach	socat	1.4.0.1
dest-unreach	socat	1.4.0.2
dest-unreach	socat	1.4.0.3
dest-unreach	socat	1.4.1.0
dest-unreach	socat	1.4.2.0
dest-unreach	socat	1.4.3.0
dest-unreach	socat	1.4.3.1
dest-unreach	socat	1.5.0.0
dest-unreach	socat	1.6.0.0
dest-unreach	socat	1.6.0.1
dest-unreach	socat	1.7.0.0
dest-unreach	socat	1.7.0.1
dest-unreach	socat	1.7.1.0
dest-unreach	socat	1.7.1.1
dest-unreach	socat	1.7.1.2
dest-unreach	socat	1.7.1.3
dest-unreach	socat	1.7.2.0
dest-unreach	socat	1.7.2.1
dest-unreach	socat	1.7.2.2

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

socat

bullseye	1.7.4.1-3 fixed
squeeze	no-dsa
wheezy	no-dsa
bookworm	1.7.4.4-2 fixed
sid	1.8.0.1-2 fixed
trixie	1.8.0.1-2 fixed

Ubuntu Releases

Ubuntu Product

Codename

socat

zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	not-affected
vivid	not-affected
utopic	not-affected
trusty	not-affected
saucy	ignored
quantal	ignored
precise	ignored
lucid	ignored

Common Weakness Enumeration

CWE-119 - Improper Restriction of Operations within the Bounds of a Memory Buffer
The software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.

References

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128190.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128229.html

http://lists.opensuse.org/opensuse-updates/2015-04/msg00043.html

http://osvdb.org/102612

http://seclists.org/oss-sec/2014/q1/159

http://www.dest-unreach.org/socat

http://www.dest-unreach.org/socat/contrib/socat-secadv5.txt

http://www.mandriva.com/security/advisories?name=MDVSA-2014:033

http://www.securityfocus.com/bid/65201

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128190.html

http://lists.fedoraproject.org/pipermail/package-announce/2014-February/128229.html

http://lists.opensuse.org/opensuse-updates/2015-04/msg00043.html

http://osvdb.org/102612

http://seclists.org/oss-sec/2014/q1/159

http://www.dest-unreach.org/socat

http://www.dest-unreach.org/socat/contrib/socat-secadv5.txt

http://www.mandriva.com/security/advisories?name=MDVSA-2014:033

http://www.securityfocus.com/bid/65201