« List of all CVEs

CVE-2013-0252

Published: 3/12/2013 Last updated: 8/6/2024 Reserved: 12/6/2012

boost::locale::utf::utf_traits in the Boost.Locale library in Boost 1.48 through 1.52 does not properly detect certain invalid UTF-8 sequences, which might allow remote attackers to bypass input validation protection mechanisms via crafted trailing bytes.

CNA assigner: redhat (53f830b8-0a3f-465b-8143-3b8a9948e749) Requested by: n/a

Opam packages affected (2)

clangml conf-boost

Products affected (1)

Product Vendor Version
n/a n/a < 3a2390c6777e3f6662980c6cfc25cafe9e4fef98

References (44)