CVE-2012-2673: CVE-2012-2673

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2012-2673

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple integer overflows in the (1) GC_generic_malloc and (2) calloc functions in malloc.c, and the (3) GC_generic_malloc_ignore_off_page function in mallocx.c in Boehm-Demers-Weiser GC (libgc) before 7.2 make it easier for context-dependent attackers to perform memory-related attacks such as buffer overflows via a large size value, which causes less memory to be allocated than expected.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Boehm GC ‘malloc()’和‘calloc()’缓冲区溢出漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Boehm GC是一种针对C和C++的保守垃圾回收器。 Boehm GC (libgc) 7.2之前版本中的malloc()和calloc()函数在实现上存在多个缓冲区溢出漏洞，该漏洞源于对用户提供的数据未经正确的边界值校验。攻击者可利用这些漏洞在使用受影响库中的受影响应用程序上下文中执行任意代码，攻击失败将导致拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2012-2673

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2012-2673

Please Login to view more intelligence information

http://kqueue.org/blog/2012/03/05/memory-allocator-security-revisited/x_refsource_MISC
https://github.com/ivmai/bdwgc/commit/6a93f8e5bcad22137f41b6c60a1c7384baaec2b3x_refsource_CONFIRM
https://github.com/ivmai/bdwgc/commit/be9df82919960214ee4b9d3313523bff44fd99e1x_refsource_CONFIRM
https://github.com/ivmai/bdwgc/commit/e10c1eb9908c2774c16b3148b30d2f3823d66a9ax_refsource_CONFIRM
https://github.com/ivmai/bdwgc/blob/master/ChangeLogx_refsource_CONFIRM
https://github.com/ivmai/bdwgc/commit/83231d0ab5ed60015797c3d1ad9056295ac3b2bbx_refsource_CONFIRM
http://www.securityfocus.com/bid/54227vdb-entryx_refsource_BID
🔗 http://www.ubuntu.com/usn/USN-1546-1vendor-advisoryx_refsource_UBUNTU
http://rhn.redhat.com/errata/RHSA-2013-1500.htmlvendor-advisoryx_refsource_REDHAT
http://rhn.redhat.com/errata/RHSA-2014-0149.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandriva.com/security/advisories?name=MDVSA-2012:158vendor-advisoryx_refsource_MANDRIVA
http://rhn.redhat.com/errata/RHSA-2014-0150.htmlvendor-advisoryx_refsource_REDHAT
http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082988.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2012-June/082926.htmlvendor-advisoryx_refsource_FEDORA
http://www.openwall.com/lists/oss-security/2012/06/05/1mailing-listx_refsource_MLIST
http://www.openwall.com/lists/oss-security/2012/06/07/13mailing-listx_refsource_MLIST
https://nvd.nist.gov/vuln/detail/CVE-2012-2673

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2012-2673

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2012-2673

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2012-2673

III. Intelligence Information for CVE-2012-2673

IV. Related Vulnerabilities

V. Comments for CVE-2012-2673

Leave a comment