Candidate: CVE-2013-7298
PublicDate: 2014-01-26 20:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-7298
Description:
 query_params.cpp in cxxtools before 2.2.1 allows remote attackers to cause
 a denial of service (infinite recursion and crash) via an HTTP query that
 contains %% (double percent) characters.
Ubuntu-Description:
Notes:
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=735880
Priority: medium
Discovered-by: Julian Wiesener
Assigned-to:
CVSS: 

Patches_cxxtools:
 upstream: https://github.com/maekitalo/cxxtools/commit/142bb2589dc184709857c08c1e10570947c444e3
upstream_cxxtools: released (2.2.1-1)
lucid_cxxtools: ignored (reached end-of-life)
precise_cxxtools: ignored (reached end-of-life)
precise/esm_cxxtools: DNE (precise was needed)
quantal_cxxtools: ignored (reached end-of-life)
raring_cxxtools: ignored (reached end-of-life)
saucy_cxxtools: ignored (reached end-of-life)
trusty_cxxtools: not-affected (2.2.1-1)
trusty/esm_cxxtools: DNE (trusty was not-affected [2.2.1-1])
utopic_cxxtools: not-affected (2.2.1-1)
vivid_cxxtools: not-affected (2.2.1-1)
vivid/stable-phone-overlay_cxxtools: DNE
vivid/ubuntu-core_cxxtools: DNE
wily_cxxtools: not-affected (2.2.1-1)
xenial_cxxtools: not-affected (2.2.1-1)
yakkety_cxxtools: not-affected (2.2.1-1)
zesty_cxxtools: not-affected (2.2.1-1)
devel_cxxtools: not-affected (2.2.1-1)