CVE-2013-0238
published 2013-02-13CVE-2013-0238: The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial…
PriorityP431medium5CVSS 2.0
AVNACLAuNCNINAP
EXPLOIT
EPSS
9.96%
95.0th percentile
The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
Affected
16 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | ircd-hybrid | < ircd-hybrid 1:7.2.2.dfsg.2-10 (bookworm) | ircd-hybrid 1:7.2.2.dfsg.2-10 (bookworm) |
| ircd-hybrid | ircd-hybrid | <= 8.0.5 | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | — | — |
| ircd-hybrid | ircd-hybrid | >= 0 < 1:7.2.2.dfsg.2-10 | 1:7.2.2.dfsg.2-10 |
| ircd-hybrid | ircd-hybrid | >= 0 < 1:7.2.2.dfsg.2-10 | 1:7.2.2.dfsg.2-10 |
| ircd-hybrid | ircd-hybrid | >= 0 < 1:7.2.2.dfsg.2-10 | 1:7.2.2.dfsg.2-10 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
osv5.0MEDIUM
vendor_debian5.0HIGH
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Debian
CVE-2013-0238: ircd-hybrid - The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does...
vendor_debian·2013·CVSS 5.0
CVE-2013-0238 [MEDIUM] CVE-2013-0238: ircd-hybrid - The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does...
The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
Scope: local
bookworm: resolved (fixed in 1:7.2.2.dfsg.2-10)
bullseye: resolved (fixed in 1:7.2.2.dfsg.2-10)
sid: resolved (fixed in 1:7.2.2.dfsg.2-10)
trixie: resolved (fixed in 1:7.2.2.dfsg.2-10)
GHSA
GHSA-9gxx-9pxw-xjp7: The try_parse_v4_netmask function in hostmask
ghsa_unreviewed·2022-05-05
CVE-2013-0238 [MEDIUM] CWE-20 GHSA-9gxx-9pxw-xjp7: The try_parse_v4_netmask function in hostmask
The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
OSV
CVE-2013-0238: The try_parse_v4_netmask function in hostmask
osv·2013-02-13·CVSS 5.0
CVE-2013-0238 [MEDIUM] CVE-2013-0238: The try_parse_v4_netmask function in hostmask
The try_parse_v4_netmask function in hostmask.c in IRCD-Hybrid before 8.0.6 does not properly validate masks, which allows remote attackers to cause a denial of service (crash) via a mask that causes a negative number to be parsed.
No detection rules found.
Bugzilla
CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks [epel-all]
bugzilla·2013-01-29·CVSS 5.0
CVE-2013-0238 [MEDIUM] CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks [epel-all]
CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks [epel-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of Fedora EPEL.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please use the bodhi submission link
noted in the next comment(s). This will include the bug IDs of this
tracking bug as well as the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
Bodhi notes field when available.
Please note
Bugzilla
CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks
bugzilla·2013-01-29·CVSS 5.0
CVE-2013-0238 [MEDIUM] CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks
CVE-2013-0238 ircd-hybrid: DoS due to not validating input when parsing masks
It was reported [1] that ircd-hybrid suffers from a denial of service condition due to improper validation of input when parsing masks. Because try_parse_v4_netmask() (in src/hostmask.c) uses strtoul to parse masks, and does not properly validate input, it can segfault on certain input. This could allow a remote attacker to crash the ircd server.
This has been fixed upstream in version 8.0.6 [2].
[1] http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699267
[2] http://svn.ircd-hybrid.org:8000/viewcvs.cgi/ircd-hybrid/trunk/src/hostmask.c?r1=1786&r2=1785&pathrev=1786
Discussion:
Created ircd-hybrid tracking bugs for this issue
Affects: epel-all [bug 905653]
---
According to http://dl.fedoraproject.org/pub/epe
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699267http://osvdb.org/89623http://secunia.com/advisories/51948http://secunia.com/advisories/52106http://svn.ircd-hybrid.org:8000/viewcvs.cgi/ircd-hybrid/trunk/src/hostmask.c?r1=1786&r2=1785&pathrev=1786http://www.debian.org/security/2013/dsa-2618http://www.exploit-db.com/exploits/24951http://www.mandriva.com/security/advisories?name=MDVSA-2013:093http://www.openwall.com/lists/oss-security/2013/01/29/8http://www.securityfocus.com/bid/57610https://exchange.xforce.ibmcloud.com/vulnerabilities/81695https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0055http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=699267http://osvdb.org/89623http://secunia.com/advisories/51948http://secunia.com/advisories/52106http://svn.ircd-hybrid.org:8000/viewcvs.cgi/ircd-hybrid/trunk/src/hostmask.c?r1=1786&r2=1785&pathrev=1786http://www.debian.org/security/2013/dsa-2618http://www.exploit-db.com/exploits/24951http://www.mandriva.com/security/advisories?name=MDVSA-2013:093http://www.openwall.com/lists/oss-security/2013/01/29/8http://www.securityfocus.com/bid/57610https://exchange.xforce.ibmcloud.com/vulnerabilities/81695https://wiki.mageia.org/en/Support/Advisories/MGASA-2013-0055
2013-02-13
Published