LWN.net Logo

Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

boost: input validation bypass
Package(s):boost1.49 CVE #(s):CVE-2013-0252
Created:February 18, 2013 Updated:October 4, 2013
Description: From the Ubuntu advisory:

It was discovered that the Boost.Locale library incorrectly validated some invalid UTF-8 sequences. An attacker could possibly use this issue to bypass input validation in certain applications.

Alerts:
Ubuntu USN-1727-1 2013-02-18
Mageia MGASA-2013-0061 2013-02-21
Fedora FEDORA-2013-2448 2013-02-23
Fedora FEDORA-2013-2420 2013-02-23
Mandriva MDVSA-2013:065 2013-04-08
openSUSE openSUSE-SU-2013:1523-1 2013-10-04
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds