Candidate: CVE-2012-4426
PublicDate: 2012-11-21 23:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4426
 http://www.openwall.com/lists/oss-security/2012/09/11/5
 http://www.openwall.com/lists/oss-security/2012/09/13/17
Description:
 Multiple format string vulnerabilities in mcrypt 2.6.8 and earlier might
 allow user-assisted remote attackers to cause a denial of service (crash)
 or possibly execute arbitrary code via vectors involving (1) errors.c or
 (2) mcrypt.c.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Tags_mcrypt: stack-protector
Patches_mcrypt:
upstream_mcrypt: released (2.6.8-1.1)
hardy_mcrypt: ignored (reached end-of-life)
lucid_mcrypt: ignored (reached end-of-life)
natty_mcrypt: ignored (reached end-of-life)
oneiric_mcrypt: ignored (reached end-of-life)
precise_mcrypt: ignored (reached end-of-life)
precise/esm_mcrypt: DNE (precise was needed)
quantal_mcrypt: not-affected (2.6.8-1.2)
raring_mcrypt: not-affected (2.6.8-1.2)
saucy_mcrypt: not-affected (2.6.8-1.2)
trusty_mcrypt: not-affected (2.6.8-1.2)
trusty/esm_mcrypt: DNE (trusty was not-affected [2.6.8-1.2])
utopic_mcrypt: not-affected (2.6.8-1.2)
vivid_mcrypt: not-affected (2.6.8-1.2)
vivid/stable-phone-overlay_mcrypt: DNE
vivid/ubuntu-core_mcrypt: DNE
wily_mcrypt: not-affected (2.6.8-1.2)
xenial_mcrypt: not-affected (2.6.8-1.2)
yakkety_mcrypt: not-affected (2.6.8-1.2)
zesty_mcrypt: not-affected (2.6.8-1.2)
devel_mcrypt: not-affected (2.6.8-1.2)