glibc, nptl, nscd security update

🗓️ 14 Feb 2012 02:09:08Reported by CentOS ProjectType

centos

centos🔗 lists.centos.org👁 88 Views

glibc and nscd security update for CentO

Reporter	Title	Published	Views	Family All 367
IBM Security Bulletins	Security Bulletin: z/TPF is affected by GNU C library (glibc) vulnerabilities	1 Mar 201918:05	–	ibm
ATTACKERKB	CVE-2011-1681	10 Apr 201102:55	–	attackerkb
ATTACKERKB	CVE-2011-1679	10 Apr 201102:55	–	attackerkb
ATTACKERKB	CVE-2009-5029	2 May 201314:55	–	attackerkb
ATTACKERKB	CVE-2011-1678	10 Apr 201102:55	–	attackerkb
ATTACKERKB	CVE-2011-1659	8 Apr 201115:17	–	attackerkb
ATTACKERKB	CVE-2011-1675	10 Apr 201102:55	–	attackerkb
ATTACKERKB	CVE-2009-5064	30 Mar 201122:55	–	attackerkb
Amazon	Medium: glibc	2 Feb 201200:00	–	amazon
Tenable Nessus	Amazon Linux AMI : glibc (ALAS-2012-39)	4 Sep 201300:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
CentOS	4	i386	glibc	2.3.4-2.57	glibc-2.3.4-2.57.i386.rpm
CentOS	4	i686	glibc	2.3.4-2.57	glibc-2.3.4-2.57.i686.rpm
CentOS	4	i386	glibc-common	2.3.4-2.57	glibc-common-2.3.4-2.57.i386.rpm
CentOS	4	i386	glibc-devel	2.3.4-2.57	glibc-devel-2.3.4-2.57.i386.rpm
CentOS	4	i386	glibc-headers	2.3.4-2.57	glibc-headers-2.3.4-2.57.i386.rpm
CentOS	4	i386	glibc-profile	2.3.4-2.57	glibc-profile-2.3.4-2.57.i386.rpm
CentOS	4	i386	glibc-utils	2.3.4-2.57	glibc-utils-2.3.4-2.57.i386.rpm
CentOS	4	i386	nptl-devel	2.3.4-2.57	nptl-devel-2.3.4-2.57.i386.rpm
CentOS	4	i686	nptl-devel	2.3.4-2.57	nptl-devel-2.3.4-2.57.i686.rpm
CentOS	4	i386	nscd	2.3.4-2.57	nscd-2.3.4-2.57.i386.rpm

Source	Link
twitter	www.twitter.com/centos
steadfast	www.steadfast.net/
rhn	www.rhn.redhat.com/errata/RHSA-2012-0125.html
linkedin	www.linkedin.com/groups/22405
youtube	www.youtube.com/TheCentOSProject
facebook	www.facebook.com/groups/centosproject/
reddit	www.reddit.com/r/CentOS/

14 Feb 2012 02:09Current

7.5High risk

Vulners AI Score7.5

CVSS 27.2

EPSS0.06775

glibc nptl nscd overflow ldd fnmatch mount locale rpc denial of service