Unrated severityNVD Advisory· Published Oct 9, 2013· Updated Apr 29, 2026
CVE-2013-4385
CVE-2013-4385
Description
Buffer overflow in the "read-string!" procedure in the "extras" unit in CHICKEN stable before 4.8.0.5 and development snapshots before 4.8.3 allows remote attackers to cause a denial of service (memory corruption and application crash) and possibly execute arbitrary code via a "#f" value in the NUM argument.
Affected products
45cpe:2.3:a:call-cc:chicken:*:*:*:*:*:*:*:*+ 44 more
- cpe:2.3:a:call-cc:chicken:*:*:*:*:*:*:*:*range: <=4.8.0.4
- cpe:2.3:a:call-cc:chicken:3.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:3.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:3.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:3.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:3.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.6:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.4.6:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.5.2:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.5.5:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.5.6:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.5.7:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.5:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.6:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.6.7:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.7.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.7.0.6:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.7.2:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.7.3:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.7.4:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0.2:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0.3:*:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0:rc1:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0:rc3:*:*:*:*:*:*
- cpe:2.3:a:call-cc:chicken:4.8.0:rc4:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
6- lists.gnu.org/archive/html/chicken-announce/2013-10/msg00000.htmlnvdPatch
- lists.nongnu.org/archive/html/chicken-announce/2013-09/msg00000.htmlnvdPatch
- secunia.com/advisories/55009nvdVendor Advisory
- lists.nongnu.org/archive/html/chicken-announce/2013-09/msg00001.htmlnvd
- www.securityfocus.com/bid/62690nvd
- security.gentoo.org/glsa/201612-54nvd
News mentions
0No linked articles in our index yet.