CVE-2010-1147

Publication date 6 April 2010

Last updated 24 July 2024


Ubuntu priority

Stack-based buffer overflow in Open Direct Connect Hub (aka Open DC Hub or OpenDCHub) 0.8.1 allows remote authenticated users to execute arbitrary code via a long MyINFO message.

Read the notes from the security team

Status

No maintained releases are affected by this CVE.

Package Ubuntu Release Status
opendchub 13.10 saucy Not in release
13.04 raring Not in release
12.10 quantal Not in release
12.04 LTS precise Not in release
11.10 oneiric
Not affected
11.04 natty
Not affected
10.10 maverick
Not affected
10.04 LTS lucid Ignored end of life
9.10 karmic Ignored end of life
9.04 jaunty Ignored end of life
8.10 intrepid Ignored end of life, was needed
8.04 LTS hardy Ignored end of life
6.06 LTS dapper Ignored end of life

Notes


kees

“high” for dapper since it lacks stack protections.

Patch details

For informational purposes only. We recommend not to cherry-pick updates. How can I get the fixes?

Package Patch details
opendchub