CVE-2012-4505

Published: 12 October 2012

Heap-based buffer overflow in the px_pac_reload function in lib/pac.c in libproxy 0.2.x and 0.3.x allows remote servers to have an unspecified impact via a crafted Content-Length size in an HTTP response header for a proxy.pac file request, a different vulnerability than CVE-2012-4504.

Priority

Medium

Status

Package Release Status
libproxy
Launchpad, Ubuntu, Debian
Upstream Needs triage

Patches:
Other: https://bugzilla.redhat.com/attachment.cgi?id=625842