CVE-2012-4025 — Integer Overflow or Wraparound in Squashfs-tools

CWE-190 — Integer Overflow or Wraparound8 documents6 sources

Severity

6.8MEDIUMNVD

EPSS

2.3%

top 15.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Squashfs-tools Project Squashfs-tools Debian Squashfs-tools Squashfs Project Squashfs

Timeline

PublishedJul 19

Latest updateMay 13

Description

Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squashfs 4.2 and earlier allows remote attackers to execute arbitrary code via a crafted block_log field in the superblock of a .sqsh file, leading to a heap-based buffer overflow.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages3 packages

▶debiandebian/squashfs-tools< squashfs-tools 1:4.2+20121212-1 (bookworm)

▶Debiansquashfs-tools_project/squashfs-tools< 1:4.2+20121212-1+3

▶NVDsquashfs_project/squashfs4.2

🔴Vulnerability Details

GHSA

GHSA-978f-5qgh-63fx: Integer overflow in the queue_init function in unsquashfs↗2022-05-13

▶

OSV

CVE-2012-4025: Integer overflow in the queue_init function in unsquashfs↗2012-07-19

▶

📋Vendor Advisories

Red Hat

squashfs-tools: integer overflow in queue_init() may lead to abitrary code execution↗2012-07-18

▶

Debian

CVE-2012-4025: squashfs-tools - Integer overflow in the queue_init function in unsquashfs.c in unsquashfs in Squ...↗2012

▶

💬Community

Bugzilla

CVE-2012-4024 CVE-2012-4025 squashfs-tools various flaws [fedora-all]↗2012-08-10

▶

Bugzilla

CVE-2012-4024 squashfs-tools: remote arbitrary code execution via crafted list file↗2012-07-23

▶

Bugzilla

CVE-2012-4025 squashfs-tools: integer overflow in queue_init() may lead to abitrary code execution↗2012-07-23

▶