PublicDateAtUSN: 2014-12-16
Candidate: CVE-2014-9323
PublicDate: 2014-12-16 18:59:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-9323
 http://www.firebirdsql.org/en/news/security-updates-for-v2-1-and-v2-5-series-66011/
 http://tracker.firebirdsql.org/browse/CORE-4630
 http://lists.opensuse.org/opensuse-security-announce/2014-12/msg00012.html
 https://ubuntu.com/security/notices/USN-3929-1
Description:
 The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x before
 2.5.3 SU1 allows remote attackers to cause a denial of service (NULL
 pointer dereference, segmentation fault, and crash) via an op_response
 action with a non-empty status.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_firebird2.0:
upstream_firebird2.0: ignored (reached end-of-life)
lucid_firebird2.0: ignored (reached end-of-life)
precise_firebird2.0: DNE
precise/esm_firebird2.0: DNE
trusty_firebird2.0: DNE
trusty/esm_firebird2.0: DNE
utopic_firebird2.0: DNE
vivid_firebird2.0: DNE
vivid/stable-phone-overlay_firebird2.0: DNE
vivid/ubuntu-core_firebird2.0: DNE
wily_firebird2.0: DNE
xenial_firebird2.0: DNE
yakkety_firebird2.0: DNE
zesty_firebird2.0: DNE
artful_firebird2.0: DNE
bionic_firebird2.0: DNE
cosmic_firebird2.0: DNE
devel_firebird2.0: DNE

Patches_firebird2.1:
upstream_firebird2.1: released (2.1.7)
lucid_firebird2.1: ignored (reached end-of-life)
precise_firebird2.1: ignored (reached end-of-life)
precise/esm_firebird2.1: DNE (precise was needed)
trusty_firebird2.1: DNE
trusty/esm_firebird2.1: DNE
utopic_firebird2.1: DNE
vivid_firebird2.1: DNE
vivid/stable-phone-overlay_firebird2.1: DNE
vivid/ubuntu-core_firebird2.1: DNE
wily_firebird2.1: DNE
xenial_firebird2.1: DNE
yakkety_firebird2.1: DNE
zesty_firebird2.1: DNE
artful_firebird2.1: DNE
bionic_firebird2.1: DNE
cosmic_firebird2.1: DNE
devel_firebird2.1: DNE

Patches_firebird2.5:
upstream_firebird2.5: released (2.5.3 SU1, 2.5.3.26778.ds4-5)
lucid_firebird2.5: DNE
precise_firebird2.5: ignored (reached end-of-life)
precise/esm_firebird2.5: DNE (precise was needed)
trusty_firebird2.5: released (2.5.2.26540.ds4-9ubuntu1.1)
trusty/esm_firebird2.5: released (2.5.2.26540.ds4-9ubuntu1.1)
utopic_firebird2.5: ignored (reached end-of-life)
vivid_firebird2.5: not-affected (2.5.3.26778.ds4-5)
vivid/stable-phone-overlay_firebird2.5: DNE
vivid/ubuntu-core_firebird2.5: DNE
wily_firebird2.5: not-affected (2.5.3.26778.ds4-5)
xenial_firebird2.5: not-affected (2.5.3.26778.ds4-5)
yakkety_firebird2.5: not-affected (2.5.3.26778.ds4-5)
zesty_firebird2.5: DNE
artful_firebird2.5: DNE
bionic_firebird2.5: DNE
cosmic_firebird2.5: DNE
devel_firebird2.5: DNE