CVE-2012-2677 - OpenCVE

Integer overflow in the ordered_malloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Boost	Pool

Configuration 1 [-]

OR	cpe:2.3:a:boost:pool::::::::
	cpe:2.3:a:boost:pool:2.0.0:::::::*

References

Link	Resource
http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/
http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083416.html
http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082977.html
http://www.mandriva.com/security/advisories?name=MDVSA-2013:065
http://www.openwall.com/lists/oss-security/2012/06/05/1
http://www.openwall.com/lists/oss-security/2012/06/07/13
https://security.gentoo.org/glsa/202105-04
https://svn.boost.org/trac/boost/changeset/78326	Exploit Patch
https://svn.boost.org/trac/boost/ticket/6701

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2012-07-25T19:00:00

Updated: 2021-05-26T09:06:08

Reserved: 2012-05-14T00:00:00

Link: CVE-2012-2677

JSON object: View

NVD Information

Status : Modified

Published: 2012-07-25T19:55:03.023

Modified: 2021-05-26T10:15:07.797

Link: CVE-2012-2677

JSON object: View

Redhat Information

No data.

CWE

CWE-189

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-03-05T00:00:00", "descriptions": [{"lang": "en", "value": "Integer overflow in the ordered_malloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2021-05-26T09:06:08", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://svn.boost.org/trac/boost/changeset/78326"}, {"tags": ["x_refsource_MISC"], "url": "http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/"}, {"name": "[oss-security] 20120605 memory allocator upstream patches", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/06/05/1"}, {"name": "[oss-security] 20120607 Re: memory allocator upstream patches", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://www.openwall.com/lists/oss-security/2012/06/07/13"}, {"name": "FEDORA-2012-9818", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082977.html"}, {"name": "FEDORA-2012-9029", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083416.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://svn.boost.org/trac/boost/ticket/6701"}, {"name": "MDVSA-2013:065", "tags": ["vendor-advisory", "x_refsource_MANDRIVA"], "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:065"}, {"name": "GLSA-202105-04", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/202105-04"}]}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2012-2677", "datePublished": "2012-07-25T19:00:00", "dateReserved": "2012-05-14T00:00:00", "dateUpdated": "2021-05-26T09:06:08", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:boost:pool:*:*:*:*:*:*:*:*", "matchCriteriaId": "36ECFFE3-BCAC-4EB4-A6A3-87EAAB4F3C01", "versionEndIncluding": "1.0.0", "vulnerable": true}, {"criteria": "cpe:2.3:a:boost:pool:2.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "926987DE-FDB8-451E-9342-75DC1F35C3B5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Integer overflow in the ordered_malloc function in boost/pool/pool.hpp in Boost Pool before 3.9 makes it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large memory chunk size value, which causes less memory to be allocated than expected."}, {"lang": "es", "value": "Desbordamiento de entero en la funci\u00f3n de impulso ordered_malloc en boost/pool/pool.hpp en Boost Pool anterior a v3.9 hace m\u00e1s f\u00e1cil para los atacantes dependientes de contexto llevar a cabo los ataques relacionados con la memoria tales como desbordamientos de b\u00fafer a trav\u00e9s de un valor de gran tama\u00f1o, lo que provoca menos memoria que se asignar\u00e1 de lo esperado."}], "id": "CVE-2012-2677", "lastModified": "2021-05-26T10:15:07.797", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-07-25T19:55:03.023", "references": [{"source": "secalert@redhat.com", "url": "http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/"}, {"source": "secalert@redhat.com", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-July/083416.html"}, {"source": "secalert@redhat.com", "url": "http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082977.html"}, {"source": "secalert@redhat.com", "url": "http://www.mandriva.com/security/advisories?name=MDVSA-2013:065"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2012/06/05/1"}, {"source": "secalert@redhat.com", "url": "http://www.openwall.com/lists/oss-security/2012/06/07/13"}, {"source": "secalert@redhat.com", "url": "https://security.gentoo.org/glsa/202105-04"}, {"source": "secalert@redhat.com", "tags": ["Exploit", "Patch"], "url": "https://svn.boost.org/trac/boost/changeset/78326"}, {"source": "secalert@redhat.com", "url": "https://svn.boost.org/trac/boost/ticket/6701"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-189"}], "source": "nvd@nist.gov", "type": "Primary"}]}