CVE-2014-9323

Priority
Description
The xdr_status_vector function in Firebird before 2.1.7 and 2.5.x before
2.5.3 SU1 allows remote attackers to cause a denial of service (NULL
pointer dereference, segmentation fault, and crash) via an op_response
action with a non-empty status.
Notes
Package
Upstream:ignored (reached end-of-life)
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Package
Upstream:released (2.1.7)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):DNE
Ubuntu 16.04 LTS (Xenial Xerus):DNE
Ubuntu 18.04 LTS (Bionic Beaver):DNE
Package
Upstream:released (2.5.3 SU1, 2.5.3.26778.ds4-5)
Ubuntu 12.04 ESM (Precise Pangolin):DNE (precise was needed)
Ubuntu 14.04 ESM (Trusty Tahr):released (2.5.2.26540.ds4-9ubuntu1.1)
Ubuntu 16.04 LTS (Xenial Xerus):not-affected (2.5.3.26778.ds4-5)
Ubuntu 18.04 LTS (Bionic Beaver):DNE
More Information

Updated: 2020-05-07 18:36:43 UTC (commit 3db3e0dddc92f0ed79599b5949ba82bc7a3031ed)