Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
gentooGentoo FoundationGLSA-201503-04
HistoryMar 08, 2015 - 12:00 a.m.

GNU C Library: Multiple vulnerabilities

2015-03-0800:00:00
Gentoo Foundation
security.gentoo.org
23

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON

Background

The GNU C library is the standard C library used by Gentoo Linux systems.

Description

Multiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers referenced below for details.

Impact

A local attacker may be able to execute arbitrary code or cause a Denial of Service condition,.

Workaround

There is no known workaround at this time.

Resolution

All glibc users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.19-r1"
OSVersionArchitecturePackageVersionFilename
Gentooanyallsys-libs/glibc< 2.19-r1UNKNOWN

Related

openvas 51
nessus 61
mageia 2
altlinux 3
securityvulns 6
fedora 6
ubuntu 6
debian 4
suse 4
osv 4
f5 6
debiancve 5
amazon 2
prion 6
oraclelinux 6
ubuntucve 6
cve 7
veracode 2
centos 5
redhat 5
slackware 1
ibm 1
openvas
openvas
Gentoo Security Advisory GLSA 201503-04
2015-09-29 00:00:00
Fedora Update for glibc FEDORA-2013-17475
2013-10-03 00:00:00
Fedora Update for glibc FEDORA-2013-17475
2013-10-03 00:00:00
nessus
nessus
GLSA-201503-04 : GNU C Library: Multiple vulnerabilities (GHOST)
2015-03-09 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2013:283)
2013-11-26 00:00:00
Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 : eglibc vulnerabilities (USN-1991-1)
2013-10-22 00:00:00
mageia
mageia
Updated glibc package fixes security vulnerabilities
2013-11-22 22:44:49
Updated glibc packages fix security vulnerabilities
2015-05-06 18:16:01
altlinux
altlinux
Security fix for the ALT Linux 9 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 7 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
securityvulns
securityvulns
[ MDVSA-2013:284 ] glibc
2013-12-01 00:00:00
glibc security vulnerabilities
2013-12-01 00:00:00
GNU glibc security vulnerabilities
2013-05-09 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: glibc-2.17-18.fc19
2013-09-28 00:07:09
[SECURITY] Fedora 19 Update: glibc-2.17-13.fc19
2013-08-22 00:50:09
[SECURITY] Fedora 19 Update: glibc-2.17-14.fc19
2013-08-27 23:29:45
ubuntu
ubuntu
GNU C Library vulnerabilities
2013-10-21 00:00:00
GNU C Library vulnerabilities
2012-10-02 00:00:00
GNU C Library regression
2012-12-17 00:00:00
debian
debian
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
[SECURITY] [DLA 350-1] eglibc security update
2015-11-26 17:49:39
[SECURITY] [DSA 3169-1] eglibc security update
2015-02-23 06:08:58
suse
suse
Security update for glibc (important)
2014-09-12 06:04:16
Security update for glibc (important)
2014-09-15 19:04:18
Security update for glibc (important)
2014-09-12 02:04:23
osv
osv
eglibc - security update
2015-03-06 00:00:00
eglibc - security update
2015-11-26 00:00:00
eglibc - security update
2015-02-23 00:00:00
f5
f5
SOL16364 - GNU C Library (glibc) vulnerability CVE-2012-3406
2015-04-03 00:00:00
K16364 : GNU C Library (glibc) vulnerability CVE-2012-3406
2015-07-23 00:00:00
K15640 : GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458
2014-10-02 00:00:00
debiancve
debiancve
CVE-2012-3406
2014-02-10 18:15:00
CVE-2012-3405
2014-02-10 18:15:00
CVE-2013-4458
2013-12-12 18:55:00
amazon
amazon
Medium: glibc
2012-07-25 17:56:00
Medium: glibc
2013-12-17 21:39:00
prion
prion
Format string
2014-02-10 18:15:00
Format string
2014-02-10 18:15:00
Stack overflow
2013-12-12 18:55:00
oraclelinux
oraclelinux
glibc security and bug fix update
2012-07-18 00:00:00
glibc security, bug fix, and enhancement update
2013-11-25 00:00:00
glibc security and bug fix update
2013-04-24 00:00:00
ubuntucve
ubuntucve
CVE-2012-3406
2012-07-13 00:00:00
CVE-2012-3405
2012-07-13 00:00:00
CVE-2013-4458
2013-12-12 00:00:00
cve
cve
CVE-2012-3406
2014-02-10 18:15:00
CVE-2012-3405
2014-02-10 18:15:00
CVE-2013-4458
2013-12-12 18:55:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:54:39
Stack-based Buffer Overflow
2019-05-02 04:44:45
centos
centos
glibc, nscd security update
2012-07-18 18:17:20
glibc, nscd security update
2013-11-26 13:31:38
glibc, nscd security update
2014-10-20 18:08:56
redhat
redhat
(RHSA-2012:1098) Moderate: glibc security and bug fix update
2012-07-18 00:00:00
(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2013:0769) Low: glibc security and bug fix update
2013-04-24 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
ibm
ibm
Security Bulletin: Vulnerability in glibc affects Integrated Management Module 2 (IMM2) (CVE-2013-4332)
2019-01-31 01:55:01

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.975 High

EPSS

Percentile

100.0%

JSON
Related for GLSA-201503-04
openvas51nessus61mageia2altlinux3securityvulns6fedora6ubuntu6debian4suse4osv4f56debiancve5amazon2prion6oraclelinux6ubuntucve6cve7veracode2centos5redhat5slackware1ibm1