{"id":"MGASA-2016-0089","summary":"Updated perl-FCGI packages fix CVE-2012-6687","details":"Updated fcgi packages fix security vulnerability:\n\nFCGI does not perform range checks for file descriptors before use of the\nFD_SET macro.  This FD_SET macro could allow for more than 1024 total file\ndescriptors to be monitored in the closing state. This may allow remote\nattackers to cause a denial of service (stack memory corruption, and infinite\nloop or daemon crash) by opening many socket connections to the host and\ncrashing the service (CVE-2012-6687).\n","modified":"2026-04-16T01:47:10.875580763Z","published":"2016-03-02T18:28:46Z","upstream":["CVE-2012-6687"],"references":[{"type":"ADVISORY","url":"https://advisories.mageia.org/MGASA-2016-0089.html"},{"type":"REPORT","url":"https://bugs.mageia.org/show_bug.cgi?id=17823"},{"type":"WEB","url":"http://lwn.net/Alerts/677312/"}],"affected":[{"package":{"name":"perl-FCGI","ecosystem":"Mageia:5","purl":"pkg:rpm/mageia/perl-FCGI?arch=source&distro=mageia-5"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.770.0-4.1.mga5"}]}],"ecosystem_specific":{"section":"core"},"database_specific":{"source":"https://advisories.mageia.org/MGASA-2016-0089.json"}}],"schema_version":"1.7.5","credits":[{"name":"Mageia","contact":["https://wiki.mageia.org/en/Packages_Security_Team"],"type":"COORDINATOR"}]}