Lucene search

Debian Security Bug TrackerDEBIANCVE:CVE-2015-0235

HistoryJan 28, 2015 - 7:59 p.m.

CVE-2015-0235

2015-01-2819:59:00

Debian Security Bug Tracker

security-tracker.debian.org

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka “GHOST.”

OSVersionArchitecturePackageVersionFilename
Debian12allglibc< 2.18-1glibc_2.18-1_all.deb
Debian11allglibc< 2.18-1glibc_2.18-1_all.deb
Debian10allglibc< 2.18-1glibc_2.18-1_all.deb
Debian999allglibc< 2.18-1glibc_2.18-1_all.deb
Debian13allglibc< 2.18-1glibc_2.18-1_all.deb

OS	Version	Architecture	Package	Version	Filename
Debian	12	all	glibc	< 2.18-1	glibc_2.18-1_all.deb
Debian	11	all	glibc	< 2.18-1	glibc_2.18-1_all.deb
Debian	10	all	glibc	< 2.18-1	glibc_2.18-1_all.deb
Debian	999	all	glibc	< 2.18-1	glibc_2.18-1_all.deb
Debian	13	all	glibc	< 2.18-1	glibc_2.18-1_all.deb

nessus

openSUSE Security Update : glibc (openSUSE-SU-2015:0184-1) (GHOST)

2015-02-03 00:00:00

RHEL 6 / 7 : glibc (RHSA-2015:0092) (GHOST)

2015-01-28 00:00:00

Mandriva Linux Security Advisory : glibc (MDVSA-2015:039)

2015-02-11 00:00:00

ibm

Security Bulletin: GNU C library (glibc) vulnerability affects IBM SDN-VE Unified Controller and IBM SDN-VE Service Appliance (CVE-2015-0235)

2018-06-18 01:27:51

Security Bulletin: GNU C library (glibc) vulnerability affects IBM Netezza Host Management (CVE-2015-0235)

2019-10-18 03:10:29

Security Bulletin: GNU C library (glibc) vulnerability affects IBM Security Access Manager for Web (CVE-2015-0235)

2018-06-16 21:22:14

K16057 : GHOST: glibc gethostbyname buffer overflow vulnerability CVE-2015-0235

2015-10-09 00:00:00

SOL16057 - GHOST: glibc gethostbyname buffer overflow vulnerability CVE-2015-0235

2015-01-27 00:00:00

exploitpack

Exim ESMTP 4.80 - glibc gethostbyname Denial of Service

2015-01-29 00:00:00

Exim - GHOST glibc gethostbyname Buffer Overflow (Metasploit)

2015-03-18 00:00:00

metasploit

WordPress XMLRPC GHOST Vulnerability Scanner

2015-01-30 14:29:51

Exim GHOST (glibc gethostbyname) Buffer Overflow

2015-03-18 23:51:16

debian

[SECURITY] [DLA 139-1] eglibc security update

2015-01-28 10:26:11

[SECURITY] [DSA 3142-1] eglibc security update

2015-01-27 15:39:21

altlinux

Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.2

2015-01-28 00:00:00

Security fix for the ALT Linux 5 package glibc version 6:2.11.2-alt1.M51.2

2015-01-28 00:00:00

attackerkb

Heap overflow in glibc 2.2 name resolution (CVE-2015-0235)

2015-01-28 00:00:00

openvas

Amazon Linux: Security Advisory (ALAS-2015-473)

2015-09-08 00:00:00

SUSE: Security Advisory (SUSE-SU-2015:0158-1)

2021-06-09 00:00:00

Ubuntu: Security Advisory (USN-2485-1)

2015-01-28 00:00:00

cert

GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow

2015-01-28 00:00:00

threatpost

Ghost glibc Vulnerability Patching and Exploits

2015-01-28 13:28:29

GHOST glibc Linux Remote Code Execution Vulnerability

2015-01-27 12:55:29

packetstorm

Exim ESMTP GHOST Denial Of Service

2015-01-29 00:00:00

Exim GHOST (glibc gethostbyname) Buffer Overflow

2015-03-24 00:00:00

Qualys Security Advisory - glibc gethostbyname Buffer Overflow

2015-01-27 00:00:00

checkpoint_advisories

GNU C Library gethostbyname Buffer Overflow (CVE-2015-0235)

2015-01-28 00:00:00

lenovo

GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow ("GHOST")

2016-07-22 00:00:00

GNU C Library (glibc) __nss_hostname_digits_dots() function vulnerable to buffer overflow (

2016-07-22 00:00:00

thn

GHOST glibc Vulnerability Affects WordPress and PHP applications

2015-01-29 23:53:00

Critical GHOST vulnerability affects most Linux Systems

2015-01-27 21:17:00

Critical glibc Flaw Puts Linux Machines and Apps at Risk (Patch Immediately)

2016-02-16 21:27:00

redhat

(RHSA-2015:0092) Critical: glibc security update

2015-01-27 00:00:00

(RHSA-2015:0101) Critical: glibc security update

2015-01-28 00:00:00

(RHSA-2015:0090) Critical: glibc security update

2015-01-27 00:00:00

ics

Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability

2018-09-10 12:00:00

Siemens SIMATIC HMI Basic, SINUMERIK, and Ruggedcom APE GHOST Vulnerability (Update A)

2018-08-27 12:00:00

centos

glibc, nscd security update

2015-01-27 23:31:01

glibc, nscd security update

2015-01-27 22:59:55

slackware

[slackware-security] glibc

2015-01-28 20:35:21

suse

glibc (critical)

2015-01-28 19:04:53

Security update for glibc (critical)

2015-02-02 09:04:48

Security update for glibc (critical)

2015-01-28 03:04:56

oraclelinux

glibc security update

2015-01-27 00:00:00

glibc security update

2015-01-29 00:00:00

glibc security update

2015-08-17 00:00:00

fortinet

CVE-2015-0235 "GHOST" vulnerability

2015-01-28 00:00:00

vulnerlab

Glibc Ghost Vulnerability (CVE-2015-0235) - How to Secure

2015-01-30 00:00:00

Glibc Ghost Vulnerability (CVE-2015-0235) - How to Secure

2015-01-30 00:00:00

arista

Security Advisory 0009

2015-01-28 00:00:00

veracode

Arbitrary Code Execution

2019-01-15 09:04:16

cisco

GNU glibc gethostbyname Function Buffer Overflow Vulnerability

2015-01-28 22:30:00

huawei

Security Advisory - Glibc Buffer Overflow Vulnerability

2015-02-26 00:00:00

checkpoint_security

Check Point Response to CVE-2015-0235 (glibc - GHOST)

2015-01-26 22:00:00

securityvulns

Qualys Security Advisory CVE-2015-0235 - GHOST: glibc gethostbyname buffer overflow

2015-02-02 00:00:00

GNU glibc gethostbyname functions buffer overflow

2015-02-02 00:00:00

ESA-2015-040: EMC Secure Remote Services Virtual Edition Security Update for Multiple Vulnerabilities

2015-03-16 00:00:00

osv

eglibc - security update

2015-01-28 00:00:00

eglibc - security update

2015-01-27 00:00:00

prion

Heap overflow

2015-01-28 19:59:00

zdt

Exim GHOST (glibc gethostbyname) Buffer Overflow Exploit

2015-03-19 00:00:00

Exim ESMTP GHOST Denial Of Service Exploit

2015-01-29 00:00:00

Nexans FTTO GigaSwitch Outdated Components / Hardcoded Backdoor Vulnerability

2022-06-21 00:00:00

ubuntucve

CVE-2015-0235

2015-01-27 00:00:00

freebsd

glibc -- gethostbyname buffer overflow

2015-01-27 00:00:00

php5 -- multiple vulnerabilities

2015-02-18 00:00:00

amazon

Critical: glibc

2015-01-27 11:41:00

Critical: php55

2015-03-23 08:29:00

Critical: php54

2015-03-13 10:00:00

citrix

CVE-2015-0235 - Citrix Security Advisory for glibc GHOST Vulnerability

2015-01-28 04:00:00

cloudfoundry

CVE-2015-0235 - GHOST | Cloud Foundry

2015-01-28 00:00:00

cisa

Linux "Ghost" Remote Code Execution Vulnerability

2015-01-27 00:00:00

seebug

Linux glibc 缓冲区溢出 (幽灵(Ghost))

2015-07-02 00:00:00

cve

CVE-2015-0235

2015-01-28 19:59:00

paloalto

GHOST: glibc vulnerability

2015-02-02 08:00:00

ubuntu

GNU C Library vulnerability

2015-01-27 00:00:00

exploitdb

Exim - 'GHOST' glibc gethostbyname Buffer Overflow (Metasploit)

2015-03-18 00:00:00

Exim ESMTP 4.80 - glibc gethostbyname Denial of Service

2015-01-29 00:00:00

fedora

[SECURITY] Fedora 21 Update: php-5.6.6-1.fc21

2015-02-23 23:28:40

[SECURITY] Fedora 20 Update: php-5.5.22-1.fc20

2015-03-04 10:24:35

archlinux

jasper: arbitrary code execution

2015-01-27 00:00:00

flashplugin: multiple issues

2015-01-23 00:00:00

gentoo

GNU C Library: Multiple vulnerabilities

2015-03-08 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

CVE-2015-0235

Related