CVE-2018-7485
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2018-7485
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2018-7485.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2018-7485
- Downstream
- Related
- Published
- 2018-02-26T14:29:00Z
- Modified
- 2025-10-21T04:38:34.584220Z
- Severity
-
- 9.8 (Critical) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The SQLWriteFileDSN function in odbcinst/SQLWriteFileDSN.c in unixODBC 2.3.5 has strncpy arguments in the wrong order, which allows attackers to cause a denial of service or possibly have unspecified other impact.
- References
Affected packages
Git / github.com/lurcher/unixodbc
Affected ranges
- Type
- GIT
- Repo
- https://github.com/lurcher/unixodbc
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Database specific
vanir_signatures
[
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "DriverManager/SQLSetDescFieldW.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-0116c673",
"signature_version": "v1",
"digest": {
"line_hashes": [
"194871485976564568222644147018375322529",
"312567024388020377303674224657788866569",
"58741678282498609914839137469146592184",
"209895836599252194242520718469085956174",
"326483403762743264162801175920691335243",
"168890070038278725565808719351188359857",
"125084256621417646051386122425565055328",
"125984365178799877983202624116070204082",
"92132637959238713266268352754292153879",
"306296870941242442268711629127234700614"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "SQLWriteFileDSN",
"file": "odbcinst/SQLWriteFileDSN.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-19f0387a",
"signature_version": "v1",
"digest": {
"function_hash": "221076018990600298752231612385570872422",
"length": 1635.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "_single_string_alloc_and_copy",
"file": "odbcinst/SQLCreateDataSource.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-212ed892",
"signature_version": "v1",
"digest": {
"function_hash": "238544046005397600979991927817734991558",
"length": 297.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "_multi_string_alloc_and_copy",
"file": "odbcinst/SQLCreateDataSource.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-3c7c5277",
"signature_version": "v1",
"digest": {
"function_hash": "57408896660651845829201121512772019330",
"length": 373.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "odbcinst/SQLWriteFileDSN.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-5e452665",
"signature_version": "v1",
"digest": {
"line_hashes": [
"125978840017268019661405498929304996526",
"130669083775802491445520679967672518409",
"95081495488433232928438470821688840354",
"78255813772861821172530249409844349989"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "_single_string_alloc_and_expand",
"file": "odbcinst/SQLCreateDataSource.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-618030e3",
"signature_version": "v1",
"digest": {
"function_hash": "185621171165862406585399902487544233849",
"length": 310.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "ExecuteSQL",
"file": "exe/iusql.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-64139fb2",
"signature_version": "v1",
"digest": {
"function_hash": "57694611605143552821001553328450893791",
"length": 2332.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "odbcinst/SQLCreateDataSource.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-69968670",
"signature_version": "v1",
"digest": {
"line_hashes": [
"279550115446533684865211626208940972917",
"104454965380888258184927876949273661952",
"213462015308014849553462333152542319343",
"17709770620305686166818284381155690960",
"279550115446533684865211626208940972917",
"104454965380888258184927876949273661952",
"143312565989849313773924593936162855618",
"32293983432283445473372534407914028702",
"279550115446533684865211626208940972917",
"104454965380888258184927876949273661952",
"213462015308014849553462333152542319343",
"17709770620305686166818284381155690960",
"279550115446533684865211626208940972917",
"104454965380888258184927876949273661952",
"143312565989849313773924593936162855618",
"32293983432283445473372534407914028702"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "exe/iusql.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-6f7c1138",
"signature_version": "v1",
"digest": {
"line_hashes": [
"16920515504138527376691221490549844046",
"265361416020442231806819742315250355203",
"27953130207036718978259237167033226313",
"303589925598142668754667590288795642673"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "DriverManager/SQLSetDescField.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-80101cbb",
"signature_version": "v1",
"digest": {
"line_hashes": [
"194871485976564568222644147018375322529",
"312567024388020377303674224657788866569",
"58741678282498609914839137469146592184",
"209895836599252194242520718469085956174",
"326483403762743264162801175920691335243",
"168890070038278725565808719351188359857",
"125084256621417646051386122425565055328",
"125984365178799877983202624116070204082",
"92132637959238713266268352754292153879",
"306296870941242442268711629127234700614"
],
"threshold": 0.9
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "_multi_string_alloc_and_expand",
"file": "odbcinst/SQLCreateDataSource.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-afd78502",
"signature_version": "v1",
"digest": {
"function_hash": "23309584842023270580920713917630728259",
"length": 383.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "SQLSetDescField",
"file": "DriverManager/SQLSetDescField.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-c90955bf",
"signature_version": "v1",
"digest": {
"function_hash": "116185973548757359693982793420048436103",
"length": 4846.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"function": "SQLSetDescFieldW",
"file": "DriverManager/SQLSetDescFieldW.c"
},
"signature_type": "Function",
"deprecated": false,
"id": "CVE-2018-7485-cef8ed6c",
"signature_version": "v1",
"digest": {
"function_hash": "9414074466139147391569923712408860203",
"length": 5785.0
}
},
{
"source": "https://github.com/lurcher/unixodbc/commit/45ef78e037f578b15fc58938a3a3251655e71d6f",
"target": {
"file": "DriverManager/SQLGetDiagRecW.c"
},
"signature_type": "Line",
"deprecated": false,
"id": "CVE-2018-7485-e2d13c2f",
"signature_version": "v1",
"digest": {
"line_hashes": [
"322111850722312363252504691623787776831",
"323238464578941118727250322460627829589",
"237290684553146219010531614035793345490"
],
"threshold": 0.9
}
}
]