DEBIAN-CVE-2012-3417

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2012-3417

Import Source

https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-3417.json

JSON Data

https://api.osv.dev/v1/vulns/DEBIAN-CVE-2012-3417

Upstream

CVE-2012-3417

Published

2012-08-13T20:55:08.867Z

Modified

2026-04-28T20:07:50.720054Z

Summary

[none]

Details

The goodclient function in rquotad (rquotasvc.c) in Linux DiskQuota (aka quota) before 3.17 invokes the hosts_ctl function the first time without a host name, which might allow remote attackers to bypass TCP Wrappers rules in hosts.deny.

References

https://security-tracker.debian.org/tracker/CVE-2012-3417

Affected packages

Debian:11 / quota

Package

Name: quota
Purl: pkg:deb/debian/quota?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.00~pre1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-3417.json"

Debian:12 / quota

Package

Name: quota
Purl: pkg:deb/debian/quota?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.00~pre1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-3417.json"

Debian:13 / quota

Package

Name: quota
Purl: pkg:deb/debian/quota?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.00~pre1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-3417.json"

Debian:14 / quota

Package

Name: quota
Purl: pkg:deb/debian/quota?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

4.00~pre1-1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2012-3417.json"