CVE-2012-0864 (retired)

Priority
Description
Integer overflow in the vfprintf function in stdio-common/vfprintf.c in
glibc 2.14 and other versions allows context-dependent attackers to bypass
the FORTIFY_SOURCE protection mechanism, conduct format string attacks, and
write to arbitrary memory via a large number of arguments.
Notes
 jdstrand> proposed patch in upstream bug. Not approved yet
Package
Upstream:needs-triage
More Information

Updated: 2019-09-19 15:39:36 UTC (commit d32ebc32606b9517c6fa7d65a15441e2a57a6de5)