{"id":"CVE-2012-3480","details":"Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified \"related functions\" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.","modified":"2026-01-27T04:13:01.629440Z","published":"2012-08-25T10:29:51Z","withdrawn":"2026-01-27T04:13:01.629440Z","related":["SUSE-SU-2015:0551-1"],"references":[{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2012-1207.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2012-1208.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2012-1262.html"},{"type":"ADVISORY","url":"http://rhn.redhat.com/errata/RHSA-2012-1325.html"},{"type":"ADVISORY","url":"http://secunia.com/advisories/50201"},{"type":"ADVISORY","url":"http://secunia.com/advisories/50422"},{"type":"ADVISORY","url":"http://www.ubuntu.com/usn/USN-1589-1"},{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/201503-04"},{"type":"REPORT","url":"http://sourceware.org/bugzilla/show_bug.cgi?id=14459"},{"type":"WEB","url":"http://lists.fedoraproject.org/pipermail/package-announce/2012-August/085190.html"},{"type":"WEB","url":"http://osvdb.org/84710"},{"type":"WEB","url":"http://sourceware.org/ml/libc-alpha/2012-08/msg00202.html"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2012/08/13/4"},{"type":"WEB","url":"http://www.openwall.com/lists/oss-security/2012/08/13/6"},{"type":"WEB","url":"http://www.securityfocus.com/bid/54982"},{"type":"WEB","url":"http://www.securitytracker.com/id?1027374"}],"schema_version":"1.7.3"}