6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
8.8 High
AI Score
Confidence
High
0.105 Low
EPSS
Percentile
95.0%
Package : eglibc
Version : 2.11.3-4+deb6u6
CVE ID : CVE-2015-1781
Arjun Shankar of Red Hat discovered that gethostbyname_r and related
functions compute the size of an input buffer incorrectly if the passed-in
buffer is misaligned. This results in a buffer overflow.
Raphaël Hertzog ◈ Debian Developer
Support Debian LTS: http://www.freexian.com/services/debian-lts.html
Learn to master Debian: http://debian-handbook.info/get/
Attachment:
signature.asc
Description: Digital signature
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 8 | s390x | locales-all | < 2.19-18+deb8u1 | locales-all_2.19-18+deb8u1_s390x.deb |
Debian | 6 | amd64 | libnss-files-udeb | < 2.11.3-4+deb6u6 | libnss-files-udeb_2.11.3-4+deb6u6_amd64.deb |
Debian | 7 | s390x | libc6-udeb | < 2.13-38+deb7u10 | libc6-udeb_2.13-38+deb7u10_s390x.deb |
Debian | 7 | sparc | libc6-dev-sparc64 | < 2.13-38+deb7u10 | libc6-dev-sparc64_2.13-38+deb7u10_sparc.deb |
Debian | 7 | s390 | libnss-files-udeb | < 2.13-38+deb7u10 | libnss-files-udeb_2.13-38+deb7u10_s390.deb |
Debian | 7 | sparc | libnss-files-udeb | < 2.13-38+deb7u10 | libnss-files-udeb_2.13-38+deb7u10_sparc.deb |
Debian | 8 | amd64 | nscd | < 2.19-18+deb8u1 | nscd_2.19-18+deb8u1_amd64.deb |
Debian | 6 | i386 | nscd | < 2.11.3-4+deb6u6 | nscd_2.11.3-4+deb6u6_i386.deb |
Debian | 6 | i386 | libc6-dev | < 2.11.3-4+deb6u6 | libc6-dev_2.11.3-4+deb6u6_i386.deb |
Debian | 7 | s390 | libc6-udeb | < 2.13-38+deb7u10 | libc6-udeb_2.13-38+deb7u10_s390.deb |