Your submission was sent successfully! Close

CVE-2014-2386

Published: 25 March 2014

Multiple off-by-one errors in Icinga, possibly 1.10.2 and earlier, allow remote attackers to cause a denial of service (crash) via unspecified vectors to the (1) display_nav_table, (2) print_export_link, (3) page_num_selector, or (4) page_limit_selector function in cgi/cgiutils.c or (5) status_page_num_selector function in cgi/status.c, which triggers a stack-based buffer overflow.

Notes

AuthorNote
seth-arnold
One-byte overflows of ascii NUL might not normally get a 'medium'
but there's so many of them fixed that perhaps one might be useful enough
in an exploit.
Priority

Medium

Status

Package Release Status
icinga
Launchpad, Ubuntu, Debian
artful Not vulnerable
(1.11.0-1)
bionic Not vulnerable
(1.11.0-1)
cosmic Not vulnerable
(1.11.0-1)
disco Not vulnerable
(1.11.0-1)
eoan Not vulnerable
(1.11.0-1)
lucid Does not exist

precise Does not exist
(precise was needed)
quantal Ignored
(reached end-of-life)
saucy Ignored
(reached end-of-life)
trusty Does not exist
(trusty was needed)
upstream
Released (1.11.0-1)
utopic Not vulnerable
(1.11.0-1)
vivid Does not exist

wily Not vulnerable
(1.11.0-1)
xenial Not vulnerable
(1.11.0-1)
yakkety Not vulnerable
(1.11.0-1)
zesty Not vulnerable
(1.11.0-1)
Patches:
upstream: https://git.icinga.org/?p=icinga-core.git;a=commitdiff;h=73285093b71a5551abdaab0a042d3d6bae093b0d