CVE-2012-2152
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2012-2152
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2012-2152.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2012-2152
- Related
- Published
- 2012-07-25T21:55:01Z
- Modified
- 2025-04-11T02:53:44.235422Z
- Summary
- [none]
- Details
-
Stack-based buffer overflow in the get_packet method in socket.c in dhcpcd 3.2.3 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long packet.
- References
-
- http://www.debian.org/security/2012/dsa-2498
- https://bugzilla.novell.com/show_bug.cgi?id=760334
- http://www.openwall.com/lists/oss-security/2012/05/02/4
- http://www.openwall.com/lists/oss-security/2012/05/02/5
- http://www.securityfocus.com/bid/53354
- https://security-tracker.debian.org/tracker/CVE-2012-2152
Affected packages
Debian:13 / dhcpcd
Package
- Name
- dhcpcd
- Purl
- pkg:deb/debian/dhcpcd?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1:3.2.3-11
Affected versions
0.*
0.4-1
0.6-1
0.70-3
1.*
1.3.8-0.1
10.*
10.0.1-1
10.0.1-2
1:0.*
1:0.70-5
1:1.*
1:1.3.17pl2-8
1:1.3.17pl2-8.1
1:1.3.22pl4-20
1:1.3.22pl4-21
1:1.3.22pl4-21sarge1
1:1.3.22pl4-22
1:2.*
1:2.0.0-1
1:2.0.0-2
1:2.0.1-1
1:2.0.2-1
1:2.0.3-1
1:3.*
1:3.0.17-1
1:3.0.17-2
1:3.2.2-1
1:3.2.3-1
1:3.2.3-1.1
1:3.2.3-2
1:3.2.3-3
1:3.2.3-4
1:3.2.3-5
1:3.2.3-5+squeeze1
1:3.2.3-5+squeeze2
1:3.2.3-6
1:3.2.3-7
1:3.2.3-8
1:3.2.3-9
1:3.2.3-10