CVE-2015-4041
24.01.2020, 17:15
The keycompare_mb function in sort.c in sort in GNU Coreutils through 8.23 on 64-bit platforms performs a size calculation without considering the number of bytes occupied by multibyte characters, which allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via long UTF-8 strings.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gnu | coreutils | 𝑥 ≤ 8.23 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| coreutils |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| coreutils-doc |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| coreutils-lang |
|
Common Weakness Enumeration
References