CVE-2013-0252
Ubuntu Security Notice USN-1727-1
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
boost::locale::utf::utf_traits in the Boost.Locale library in Boost 1.48 through 1.52 does not properly detect certain invalid UTF-8 sequences, which might allow remote attackers to bypass input validation protection mechanisms via crafted trailing bytes.
boost :: locale :: utf :: utf_traits en la biblioteca Boost Boost.Locale en Boost v1.48 hasta v1.52 no detecta correctamente ciertas secuencias UTF-8 inválidaso, lo que podría permitir a atacantes remotos eludir el mecanismo de protección mediante la manipulación de determinados bytes.
A security flaw was found in the way ordered_malloc() routine implementation in Boost, the free peer-reviewed portable C++ source libraries, performed 'next-size' and 'max_size' parameters sanitization, when allocating memory. If an application, using the Boost C++ source libraries for memory allocation, was missing application-level checks for safety of 'next_size' and 'max_size' values, a remote attacker could provide a specially-crafted application-specific file (requiring runtime memory allocation it to be processed correctly) that, when opened would lead to that application crash, or, potentially arbitrary code execution with the privileges of the user running the application. Boost.Locale library in Boost 1.48 to 1.52 including has a security flaw. ): boost::locale::utf::utf_traits accepted some invalid UTF-8 sequences. Applications that used these functions for UTF-8 input validation could expose themselves to security threats as invalid UTF-8 sequence would be considered as valid. The package has been patched to fix above security flaw.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2012-12-06 CVE Reserved
- 2013-02-18 CVE Published
- 2024-08-06 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699649 | X_refsource_misc | |
| http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699650 | X_refsource_misc | |
| http://www.boost.org/users/news/boost_locale_security_notice.html | X_refsource_confirm | |
| http://www.openwall.com/lists/oss-security/2013/02/04/2 | Mailing List |
|
| http://www.securityfocus.com/bid/57675 | Vdb Entry | |
| https://bugzilla.redhat.com/show_bug.cgi?id=907481 | X_refsource_misc | |
| https://svn.boost.org/trac/boost/ticket/7743 | X_refsource_confirm |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Boost Search vendor "Boost" | Boost Search vendor "Boost" for product "Boost" | 1.48.0 Search vendor "Boost" for product "Boost" and version "1.48.0" | - |
Affected
| ||||||
| Boost Search vendor "Boost" | Boost Search vendor "Boost" for product "Boost" | 1.49.0 Search vendor "Boost" for product "Boost" and version "1.49.0" | - |
Affected
| ||||||
| Boost Search vendor "Boost" | Boost Search vendor "Boost" for product "Boost" | 1.50.0 Search vendor "Boost" for product "Boost" and version "1.50.0" | - |
Affected
| ||||||
| Boost Search vendor "Boost" | Boost Search vendor "Boost" for product "Boost" | 1.51.0 Search vendor "Boost" for product "Boost" and version "1.51.0" | - |
Affected
| ||||||
| Boost Search vendor "Boost" | Boost Search vendor "Boost" for product "Boost" | 1.52.0 Search vendor "Boost" for product "Boost" and version "1.52.0" | - |
Affected
| ||||||