CVE-2015-5218
Published: 9 November 2015
Buffer overflow in text-utils/colcrt.c in colcrt in util-linux before 2.27 allows local users to cause a denial of service (crash) via a crafted file, related to the page global variable.
Notes
| Author | Note |
|---|---|
| sbeattie | fixed in util-linux, but debian/ubuntu util-linux does not ship colcrt |
| ccdm94 | package bsdmainutils is not vulnerable in any release due to code that checks for writing beyond array bounds being included in the commit which introduced multibyte character support (243041573f0). Releases that include the multibyte character support therefore include the checks. A fix that identifies read errors was also released in a 2004 commit (70cd856a0c6), and is present in the code for all Ubuntu releases that contain colcrt in bsdmainutils. More recent versions such as Ubuntu 21.10 don't include the colcrt code, as it was removed from the bsdmainutils source. |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
bsdmainutils Launchpad, Ubuntu, Debian |
artful |
Ignored
(end of life)
|
| bionic |
Not vulnerable
(11.1.2ubuntu1)
|
|
| cosmic |
Ignored
(end of life)
|
|
| disco |
Ignored
(end of life)
|
|
| eoan |
Ignored
(end of life)
|
|
| focal |
Not vulnerable
(11.1.2ubuntu3)
|
|
| groovy |
Ignored
(end of life)
|
|
| hirsute |
Ignored
(end of life)
|
|
| impish |
Not vulnerable
(code not present)
|
|
| jammy |
Not vulnerable
(code not present)
|
|
| precise |
Ignored
(end of life)
|
|
| trusty |
Not vulnerable
(9.0.5ubuntu1)
|
|
| upstream |
Released
|
|
| vivid |
Ignored
(end of life)
|
|
| wily |
Ignored
(end of life)
|
|
| xenial |
Not vulnerable
(9.0.6ubuntu3)
|
|
| yakkety |
Ignored
(end of life)
|
|
| zesty |
Ignored
(end of life)
|
|
|
Patches: upstream: https://cgit.freebsd.org/src/commit/usr.bin/colcrt/colcrt.c?h=stable/11&id=70cd856a0c676a8eb2acd677a9627fd1abb92466 |
||
|
util-linux Launchpad, Ubuntu, Debian |
artful |
Not vulnerable
(no colcrt)
|
| bionic |
Not vulnerable
(no colcrt)
|
|
| cosmic |
Not vulnerable
(no colcrt)
|
|
| disco |
Not vulnerable
(no colcrt)
|
|
| eoan |
Not vulnerable
(no colcrt)
|
|
| focal |
Not vulnerable
(no colcrt)
|
|
| groovy |
Not vulnerable
(no colcrt)
|
|
| hirsute |
Not vulnerable
(no colcrt)
|
|
| impish |
Not vulnerable
(no colcrt)
|
|
| jammy |
Not vulnerable
(no colcrt)
|
|
| precise |
Not vulnerable
(no colcrt)
|
|
| trusty |
Not vulnerable
(no colcrt)
|
|
| upstream |
Needs triage
|
|
| vivid |
Not vulnerable
(no colcrt)
|
|
| wily |
Not vulnerable
(no colcrt)
|
|
| xenial |
Not vulnerable
(no colcrt)
|
|
| yakkety |
Not vulnerable
(no colcrt)
|
|
| zesty |
Not vulnerable
(no colcrt)
|
|
|
Patches: upstream: http://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/text-utils/colcrt.c?id=70e3fcf293c1827a2655a86584ab13075124a8a8 upstream: http://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/text-utils/colcrt.c?id=d883d64d96ab9bef510745d064a351145b9babec |
||