CVE-2013-2019

NameCVE-2013-2019
DescriptionStack-based buffer overflow in BOINC 6.10.58 and 6.12.34 allows remote attackers to have unspecified impact via multiple file_signature elements.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
boinc (PTS)buster7.14.2+dfsg-3fixed
bullseye7.16.16+dfsg-1fixed
bookworm7.20.5+dfsg-1.1fixed
sid, trixie8.0.2+dfsg-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
boincsource(unstable)6.13.6+dfsg-1low

Notes

[squeeze] - boinc <no-dsa> (Minor issue)
http://boinc.berkeley.edu/gitweb/?p=boinc-v2.git;a=commitdiff;h=9a4140ae30a72e5175f3f31646d91f2d58df7156

Search for package or bug name: Reporting problems