Lucene search
IBMF1239172E03209D2AACAF721206C0452EFC5D82A8E51665A4E7A18DFE799B6A2HistoryDec 22, 2021 - 10:05 a.m.
Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability.
2021-12-2210:05:56
www.ibm.com
29
app connect professional
gnu c library
vulnerability
version 7.5.4.0
denial of service
ibm character sets
EPSS
0.001
Percentile
21.7%
Summary
App Connect Professional have addressed the following vulnerability reported in GNU C Library.
Vulnerability Details
CVEID:CVE-2020-27618
**DESCRIPTION:**GNU C Library (aka glibc or libc6) is vulnerable to a denial of service, caused by an error when processing some invalid inputs from several IBM character sets in the iconv function. By sending invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, IBM1399 encodings, a local authenticated attacker could exploit this vulnerability to cause the application to enter into an infinite loop.
CVSS Base score: 5.5
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/196446 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| App Connect Professional | 7.5.4.0 |
Remediation/Fixes
| Product | VRMF | APAR | Remediation/First Fix |
|---|---|---|---|
| App Connect Professional | 7.5.4.0 | LI82430 | 7540 Fixcentral link |
Workarounds and Mitigations
None
Related
nessus
nessus
Photon OS 3.0: Glibc PHSA-2021-3.0-0214
2021-04-01 00:00:00
Photon OS 2.0: Glibc PHSA-2021-2.0-0329
2021-03-22 00:00:00
Photon OS 4.0: Glibc PHSA-2021-4.0-0008
2024-07-24 00:00:00
ibm
ibm
cbl_mariner
cbl_mariner
CVE-2020-27618 affecting package glibc 2.28-24
2021-05-06 23:56:55
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-2.0-0329
2021-03-16 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2021-1.0-0371
2021-03-16 00:00:00
Moderate Photon OS Security Update - PHSA-2021-0214
2021-03-31 00:00:00
redhatcve
redhatcve
CVE-2020-27618
2020-11-02 12:26:42
veracode
veracode
Denial Of Service (DoS)
2021-05-24 00:38:07
ubuntucve
ubuntucve
CVE-2020-27618
2021-02-26 00:00:00
amazon
amazon
Medium: glibc
2021-06-16 20:37:00
cvelist
cvelist
CVE-2020-27618
2021-02-26 00:00:00
osv
osv
CVE-2020-27618
2021-02-26 23:15:11
glibc vulnerabilities
2022-12-08 13:17:39
Moderate: glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
cve
cve
CVE-2020-27618
2021-02-26 23:15:11
f5
f5
K08641512: glibc vulnerability CVE-2020-27618
2021-07-13 00:00:00
nvd
nvd
CVE-2020-27618
2021-02-26 23:15:11
prion
prion
Input validation
2021-02-26 23:15:00
redos
redos
ROS-20240815-01
2024-08-15 00:00:00
debiancve
debiancve
CVE-2020-27618
2021-02-26 23:15:11
openvas
openvas
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-2076)
2021-07-07 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-1899)
2021-05-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:1165-1)
2021-04-19 00:00:00
mageia
mageia
Updated glibc packages fixes security vulnerabilities
2021-03-21 13:43:43
archlinux
archlinux
[ASA-202102-16] lib32-glibc: denial of service
2021-02-07 00:00:00
[ASA-202102-17] glibc: denial of service
2021-02-07 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2022-12-08 00:00:00
GNU C Library vulnerabilities
2022-03-01 00:00:00
almalinux
almalinux
Moderate: glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
oraclelinux
oraclelinux
glibc security update
2021-07-02 00:00:00
glibc security update
2021-06-04 00:00:00
glibc security, bug fix, and enhancement update
2021-05-25 00:00:00
redhat
redhat
(RHSA-2021:1585) Moderate: glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
(RHSA-2021:2705) Moderate: Release of OpenShift Serverless 1.16.0
2021-07-13 16:31:04
rocky
rocky
glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
suse
suse
Security update for glibc (important)
2021-02-28 00:00:00
gentoo
gentoo
glibc: Multiple vulnerabilities
2021-07-06 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package glibc version 6:2.27-alt14
2021-09-23 00:00:00
cloudfoundry
cloudfoundry
USN-5310-1: GNU C Library vulnerabilities | Cloud Foundry
2023-05-18 00:00:00
debian
debian
[SECURITY] [DLA 3152-1] glibc security update
2022-10-17 15:54:41
rosalinux
rosalinux
Advisory ROSA-SA-2021-1844
2021-07-02 16:56:21
ics
ics
Siemens SIMATIC S7-1500 TM MFP BIOS
2023-06-15 12:00:00
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2022
2022-01-18 00:00:00
avleonov
avleonov
EPSS
0.001
Percentile
21.7%
Related for F1239172E03209D2AACAF721206C0452EFC5D82A8E51665A4E7A18DFE799B6A2