Candidate: CVE-2013-2492
PublicDate: 2013-03-15 22:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2492
 http://tracker.firebirdsql.org/browse/CORE-4058
Description:
 Stack-based buffer overflow in Firebird 2.1.3 through 2.1.5 before 18514,
 and 2.5.1 through 2.5.3 before 26623, on Windows allows remote attackers to
 execute arbitrary code via a crafted packet to TCP port 3050, related to a
 missing size check during extraction of a group number from CNCT
 information.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702735
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=702736
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_firebird2.1:
 vendor: http://www.debian.org/security/2013/dsa-2647
upstream_firebird2.1: needs-triage
hardy_firebird2.1: DNE
lucid_firebird2.1: ignored (reached end-of-life)
oneiric_firebird2.1: ignored (reached end-of-life)
precise_firebird2.1: ignored (reached end-of-life)
precise/esm_firebird2.1: DNE (precise was needed)
quantal_firebird2.1: ignored (reached end-of-life)
raring_firebird2.1: DNE
saucy_firebird2.1: DNE
trusty_firebird2.1: DNE
trusty/esm_firebird2.1: DNE
utopic_firebird2.1: DNE
vivid_firebird2.1: DNE
vivid/stable-phone-overlay_firebird2.1: DNE
vivid/ubuntu-core_firebird2.1: DNE
wily_firebird2.1: DNE
xenial_firebird2.1: DNE
yakkety_firebird2.1: DNE
zesty_firebird2.1: DNE
devel_firebird2.1: DNE

Patches_firebird2.5:
 vendor: http://www.debian.org/security/2013/dsa-2648
upstream_firebird2.5: needs-triage
hardy_firebird2.5: DNE
lucid_firebird2.5: DNE
oneiric_firebird2.5: ignored (reached end-of-life)
precise_firebird2.5: ignored (reached end-of-life)
precise/esm_firebird2.5: DNE (precise was needed)
quantal_firebird2.5: ignored (reached end-of-life)
raring_firebird2.5: ignored (reached end-of-life)
saucy_firebird2.5: ignored (reached end-of-life)
trusty_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
trusty/esm_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
utopic_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
vivid_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
vivid/stable-phone-overlay_firebird2.5: DNE
vivid/ubuntu-core_firebird2.5: DNE
wily_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
xenial_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
yakkety_firebird2.5: not-affected (2.5.2.26540.ds4-8ubuntu1)
zesty_firebird2.5: DNE
devel_firebird2.5: DNE