CVE-2008-4316

2009-03-14 19:30:00 2018-10-11 22:51:33

Multiple integer overflows in glib/gbase64.c in GLib before 2.20 allow context-dependent attackers to execute arbitrary code via a long string that is converted either (1) from or (2) to a base64 representation.

Vector

LOCAL

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

PARTIAL

Availability

PARTIAL

GNOME Glib 2.16.4 GNOME Glib 2.16.3 GNOME Glib 2.14.6 GNOME Glib 2.14.5 GNOME Glib 2..2.1

Gnome - Glib

Advisory	Patch	Confirmed	Link
			FEDORA-2009-2688
			ADV-2010-0528
			glib-gbase64-bo(49272)
			USN-738-1
			1021884
			34100
			20090312 rPSA-2009-0045-1 glib
			20090312 [oCERT-2008-015] glib and glib-predecessor heap...
			RHSA-2009:0336
			FEDORA-2009-2657
			[oss-security] 20090317 Re: [oCERT-2008-015] glib and gl...
			http://www.ocert.org/advisories/ocert-2008-015.html
			MDVSA-2009:080
			DSA-1747
			http://wiki.rpath.com/Advisories:rPSA-2009-0045
			http://ocert.org/patches/2008-015/glib-CVE-2008-4316.dif...
			[oss-security] 20090312 [oCERT-2008-015] glib and glib-p...
			http://svn.gnome.org/viewvc/glib?view=revision&revision=...
			[security-announce] 20100303 VMSA-2010-0004 ESX Service ...
			SUSE-SA:2009:026

CVE-2008-4316

2009-03-14 19:30:00 2018-10-11 22:51:33

Vector

Complexity

Authentication

Confidentiality

Integrity

Availability

Numeric Errors (ID 189)