Vulnerability CVE-2012-6687: Information

Description

FastCGI (aka fcgi and libfcgi) 2.4.0 allows remote attackers to cause a denial of service (segmentation fault and crash) via a large number of connections.

Severity: MEDIUM (5.0)

URL: https://nvd.nist.gov/vuln/detail/CVE-2012-6687
Published: Feb. 19, 2015
Modified: Sept. 8, 2017
Error type identifier: CWE-20

Fixed packages

Package name
Branch
Fixed in version
Version from repository
Errata ID
Task #
State
libfcgisisyphus2.4.2-alt12.4.2-alt1ALT-PU-2024-4608-2343687Fixed
libfcgisisyphus_e2k2.4.2-alt12.4.2-alt1ALT-PU-2024-4706-1-Fixed
libfcgisisyphus_riscv642.4.2-alt12.4.2-alt1ALT-PU-2024-4663-1-Fixed
libfcgisisyphus_loongarch642.4.2-alt12.4.2-alt1ALT-PU-2024-4677-1-Fixed
libfcgip102.4.2-alt12.4.2-alt1ALT-PU-2024-4616-2343698Fixed
libfcgip10_e2k2.4.2-alt12.4.2-alt1ALT-PU-2024-6410-1-Fixed
libfcgic10f12.4.2-alt12.4.2-alt1ALT-PU-2024-4871-2344160Fixed
libfcgic9f22.4.2-alt12.4.2-alt1ALT-PU-2024-4627-3343715Fixed

References to Advisories, Solutions, and Tools

Hyperlink
Resource
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=681591
    https://bugs.launchpad.net/ubuntu/+source/libfcgi/+bug/933417
      [oss-security] 20150207 Re: CVE request for denial-of-service vulnerability in fcgi
        https://bugzilla.redhat.com/show_bug.cgi?id=1189958
          [oss-security] 20150206 CVE request for denial-of-service vulnerability in fcgi
            http://advisories.mageia.org/MGASA-2015-0184.html
              libfcgi-connections-dos(100696)

                  1. Configuration 1

                    cpe:2.3:a:fastcgi:fcgi:2.4.0:*:*:*:*:*:*:*
                VKontakte|Telegram|YouTube|Forum|GitHub|Bugzilla
                Version: v24.5.1
                Back to top