Candidate: CVE-2015-1379
PublicDate: 2017-06-08 21:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1379
Description:
 The signal handler implementations in socat before 1.7.3.0 and 2.0.0-b8
 allow remote attackers to cause a denial of service (process freeze or
 crash).
Ubuntu-Description:
 It was discovered that socat incorrectly handled signals. A remote attacker
 could possibly use this issue to cause a denial of service.
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=776234
Priority: low
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H [7.5 HIGH]

Patches_socat:
upstream_socat: released (1.7.3.0)
lucid_socat: ignored (reached end-of-life)
precise_socat: ignored (reached end-of-life)
precise/esm_socat: DNE (precise was needed)
trusty_socat: ignored (out of standard support)
trusty/esm_socat: needed

utopic_socat: ignored (reached end-of-life)
vivid_socat: ignored (reached end-of-life)
vivid/stable-phone-overlay_socat: DNE
vivid/ubuntu-core_socat: DNE
wily_socat: ignored (reached end-of-life)
xenial_socat: not-affected (1.7.3.1-1)
yakkety_socat: ignored (reached end-of-life)
zesty_socat: ignored (reached end-of-life)
artful_socat: not-affected (1.7.3.2-1)
bionic_socat: not-affected (1.7.3.2-2ubuntu2)
cosmic_socat: not-affected (1.7.3.2-2ubuntu2)
disco_socat: not-affected (1.7.3.2-2ubuntu2)
eoan_socat: not-affected (1.7.3.2-2ubuntu2)
focal_socat: not-affected (1.7.3.2-2ubuntu2)
groovy_socat: not-affected (1.7.3.2-2ubuntu2)
hirsute_socat: not-affected (1.7.3.2-2ubuntu2)
impish_socat: not-affected (1.7.3.2-2ubuntu2)
jammy_socat: not-affected (1.7.3.2-2ubuntu2)
devel_socat: not-affected (1.7.3.2-2ubuntu2)