CVE-2011-4620

NameCVE-2011-4620
DescriptionBuffer overflow in the ulSetError function in util/ulError.cxx in PLIB 1.8.5, as used in TORCS 1.3.1 and other products, allows user-assisted remote attackers to execute arbitrary code via vectors involving a long error message, as demonstrated by a crafted acc file for TORCS. NOTE: some of these details are obtained from third party information.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDSA-2425-1
Debian Bugs654785

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
plib (PTS)buster1.8.5-8+deb10u1fixed
bullseye1.8.5-8+deb11u1fixed
trixie, bookworm1.8.5-14fixed
sid1.8.5-14.1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
plibsourcesqueeze1.8.5-5+squeeze1DSA-2425-1
plibsource(unstable)1.8.5-5.1654785

Search for package or bug name: Reporting problems