Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2014-4043HistoryOct 06, 2014 - 11:55 p.m.
CVE-2014-4043
2014-10-0623:55:00
Debian Security Bug Tracker
security-tracker.debian.org
12
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.2%
The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | glibc | < 2.19-2 | glibc_2.19-2_all.deb |
| Debian | 11 | all | glibc | < 2.19-2 | glibc_2.19-2_all.deb |
| Debian | 10 | all | glibc | < 2.19-2 | glibc_2.19-2_all.deb |
| Debian | 999 | all | glibc | < 2.19-2 | glibc_2.19-2_all.deb |
| Debian | 13 | all | glibc | < 2.19-2 | glibc_2.19-2_all.deb |
Related
f5
f5
SOL15546 - glibc vulnerability CVE-2014-4043
2014-09-04 00:00:00
K15546 : glibc vulnerability CVE-2014-4043
2014-09-04 00:00:00
nessus
nessus
SuSE 11.3 Security Update : glibc (SAT Patch Number 9477)
2014-07-20 00:00:00
openSUSE Security Update : glibc (openSUSE-2015-544)
2015-08-17 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2014:152)
2014-08-07 00:00:00
suse
suse
Security update for glibc (important)
2015-08-14 16:09:31
Security update for glibc (important)
2014-09-12 06:04:16
Security update for glibc (important)
2014-09-15 19:04:18
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0920-1)
2021-06-09 00:00:00
openSUSE: Security Advisory for glibc (openSUSE-SU-2015:1387-1)
2015-08-15 00:00:00
Mageia: Security Advisory (MGASA-2014-0314)
2022-01-28 00:00:00
securityvulns
securityvulns
glibc use-after-free
2014-08-11 00:00:00
[ MDVSA-2014:152 ] glibc
2014-08-11 00:00:00
GNU glibc multiple security vulnerabilities
2015-03-07 00:00:00
cve
cve
CVE-2014-4043
2014-10-06 23:55:00
prion
prion
Design/Logic Flaw
2014-10-06 23:55:00
ubuntucve
ubuntucve
CVE-2014-4043
2014-06-13 00:00:00
mageia
mageia
Updated glibc packages fix security issues
2014-08-06 00:08:48
ubuntu
ubuntu
GNU C Library regression
2014-08-05 00:00:00
GNU C Library vulnerabilities
2014-08-04 00:00:00
GNU C Library regression
2014-09-08 00:00:00
osv
osv
eglibc - security update
2015-02-23 00:00:00
eglibc - security update
2015-03-06 00:00:00
debian
debian
[SECURITY] [DSA 3169-1] eglibc security update
2015-02-23 06:08:58
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
packetstorm
packetstorm
Cisco Device Hardcoded Credentials / GNU glibc / BusyBox
2019-09-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1844
2021-07-02 16:56:21
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.019 Low
EPSS
Percentile
88.2%
Related for DEBIANCVE:CVE-2014-4043