Untriaged
Permalink
CVE-2024-1013
7.1 HIGH
- CVSS version: 3.1
- Attack vector (AV): LOCAL
- Attack complexity (AC): LOW
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): NONE
- Availability impact (A): HIGH
Unixodbc: out of bounds stack write due to pointer-to-integer types conversion
An out-of-bounds stack write flaw was found in unixODBC on 64-bit architectures where the caller has 4 bytes and callee writes 8 bytes. This issue may go unnoticed on little-endian architectures, while big-endian architectures can be broken.
References
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry
- RHBZ#2260823 issue-tracking x_refsource_REDHAT
- https://github.com/lurcher/unixODBC/pull/157
- RHBZ#2260823 issue-tracking x_refsource_REDHAT x_transferred
- https://github.com/lurcher/unixODBC/pull/157 x_transferred
- https://access.redhat.com/security/cve/CVE-2024-1013 x_refsource_REDHAT vdb-entry x_transferred
Affected products
unixODBC
compat-unixODBC234
Matching in nixpkgs
pkgs.tests.pkg-config.defaultPkgConfigPackages.odbc
Test whether unixODBC-2.3.12 exposes pkg-config modules odbc