logo
DATABASE RESOURCES PRICING ABOUT US

Oracle Linux 8 : glibc (ELSA-2021-4358)

2021-11-17T00:00:00

Description

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-4358 advisory. - The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact. (CVE-2021-33574) - The nameserver caching daemon (nscd) in the GNU C Library (aka glibc or libc6) 2.29 through 2.33, when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system. This is related to netgroupcache.c. (CVE-2021-27645) - The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations. (CVE-2021-35942) Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.


Related


nessus
scanner

RHEL 8 : glibc (RHSA-2021:4358)

2021-11-11T00:00:00
nessus
scanner

AlmaLinux 8 : glibc (ALSA-2021:4358)

2022-02-09T00:00:00
nessus
scanner

Rocky Linux 8 : glibc (RLSA-2021:4358)

2022-02-09T00:00:00
nessus
scanner

CentOS 8 : glibc (CESA-2021:4358)

2021-11-11T00:00:00
nessus
scanner

Oracle Linux 8 : glibc (ELSA-2021-9560)

2021-11-23T00:00:00
nessus
scanner

SUSE SLES12 Security Update : glibc (SUSE-SU-2021:3289-1)

2021-10-07T00:00:00
nessus
scanner

openSUSE 15 Security Update : glibc (openSUSE-SU-2021:1374-1)

2021-10-19T00:00:00
nessus
scanner

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2021-2550)

2021-09-27T00:00:00
nessus
scanner

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2021-2526)

2021-09-27T00:00:00
nessus
scanner

SUSE SLES11 Security Update : glibc (SUSE-SU-2021:14822-1)

2021-10-05T00:00:00
nessus
scanner

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2021:3291-1)

2021-10-07T00:00:00
nessus
scanner

SUSE SLED15 / SLES15 Security Update : glibc (SUSE-SU-2021:3385-1)

2021-10-13T00:00:00
nessus
scanner

openSUSE 15 Security Update : glibc (openSUSE-SU-2021:3291-1)

2021-10-07T00:00:00
nessus
scanner

EulerOS Virtualization 2.9.1 : glibc (EulerOS-SA-2021-2742)

2021-11-17T00:00:00
nessus
scanner

EulerOS Virtualization 2.9.0 : glibc (EulerOS-SA-2021-2766)

2021-11-17T00:00:00
nessus
scanner

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2021-2660)

2021-11-11T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.2.6 : glibc (EulerOS-SA-2021-2881)

2022-01-06T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.2.0 : glibc (EulerOS-SA-2021-2820)

2021-12-29T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.6.0 : glibc (EulerOS-SA-2022-1066)

2022-02-12T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.6.6 : glibc (EulerOS-SA-2022-1122)

2022-02-12T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.2.2 : glibc (EulerOS-SA-2023-1254)

2023-01-30T00:00:00
nessus
scanner

EulerOS 2.0 SP3 : glibc (EulerOS-SA-2022-1164)

2022-02-23T00:00:00
nessus
scanner

EulerOS 2.0 SP3 : glibc (EulerOS-SA-2022-1724)

2022-05-26T00:00:00
nessus
scanner

GLSA-202107-07 : glibc: Multiple vulnerabilities

2022-01-24T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.2.0 : glibc (EulerOS-SA-2023-1693)

2023-05-07T00:00:00
nessus
scanner

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2022-1889)

2022-06-17T00:00:00
nessus
scanner

NewStart CGSL CORE 5.04 / MAIN 5.04 : glibc Vulnerability (NS-SA-2022-0016)

2022-05-09T00:00:00
nessus
scanner

EulerOS 2.0 SP8 : glibc (EulerOS-SA-2021-2295)

2021-08-09T00:00:00
nessus
scanner

Photon OS 2.0: Glibc PHSA-2021-2.0-0354

2021-06-10T00:00:00
nessus
scanner

EulerOS 2.0 SP3 : glibc (EulerOS-SA-2021-2581)

2021-10-25T00:00:00
nessus
scanner

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2021-2330)

2021-09-07T00:00:00
nessus
scanner

Photon OS 1.0: Glibc PHSA-2021-1.0-0401

2021-06-14T00:00:00
nessus
scanner

Photon OS 3.0: Glibc PHSA-2021-3.0-0251

2021-06-10T00:00:00
nessus
scanner

SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2021:3290-1)

2021-10-07T00:00:00
nessus
scanner

Photon OS 4.0: Glibc PHSA-2021-4.0-0077

2021-08-11T00:00:00
nessus
scanner

EulerOS 2.0 SP8 : glibc (EulerOS-SA-2021-2461)

2021-09-24T00:00:00
nessus
scanner

EulerOS 2.0 SP5 : compat-glibc (EulerOS-SA-2021-2653)

2021-11-11T00:00:00
nessus
scanner

Amazon Linux 2 : glibc (ALAS-2021-1703)

2021-09-16T00:00:00
nessus
scanner

NewStart CGSL CORE 5.05 / MAIN 5.05 : glibc Vulnerability (NS-SA-2022-0042)

2022-05-10T00:00:00
nessus
scanner

Photon OS 3.0: Glibc PHSA-2021-3.0-0281

2021-08-11T00:00:00
nessus
scanner

Photon OS 1.0: Glibc PHSA-2021-1.0-0422

2021-08-09T00:00:00
nessus
scanner

Photon OS 2.0: Glibc PHSA-2021-2.0-0377

2021-08-10T00:00:00
nessus
scanner

NewStart CGSL MAIN 6.02 : glibc Vulnerability (NS-SA-2022-0067)

2022-05-10T00:00:00
nessus
scanner

EulerOS 2.0 SP3 : compat-glibc (EulerOS-SA-2022-1158)

2022-02-23T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.6.6 : glibc (EulerOS-SA-2022-2501)

2022-10-09T00:00:00
nessus
scanner

GLSA-202208-24 : GNU C Library: Multiple Vulnerabilities

2022-08-15T00:00:00
nessus
scanner

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2021-2684)

2021-11-12T00:00:00
nessus
scanner

Photon OS 3.0: Glibc PHSA-2021-3.0-0295

2021-09-07T00:00:00
nessus
scanner

Photon OS 2.0: Glibc PHSA-2021-2.0-0383

2021-08-27T00:00:00
nessus
scanner

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2021-2709)

2021-11-11T00:00:00
nessus
scanner

EulerOS 2.0 SP8 : glibc (EulerOS-SA-2021-2631)

2021-11-02T00:00:00
nessus
scanner

Photon OS 4.0: Glibc PHSA-2021-4.0-0095

2021-09-07T00:00:00
nessus
scanner

Photon OS 1.0: Glibc PHSA-2021-1.0-0428

2021-08-27T00:00:00
nessus
scanner

Ubuntu 16.04 ESM : GNU C Library vulnerabilities (USN-5699-1)

2022-10-26T00:00:00
nessus
scanner

SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2021:2480-1)

2021-07-30T00:00:00
nessus
scanner

Debian DLA-3152-1 : glibc - LTS security update

2022-10-23T00:00:00
nessus
scanner

NewStart CGSL MAIN 6.02 : glibc Multiple Vulnerabilities (NS-SA-2022-0085)

2022-11-14T00:00:00
nessus
scanner

EulerOS Virtualization for ARM 64 3.0.2.0 : glibc (EulerOS-SA-2021-2076)

2021-07-02T00:00:00
nessus
scanner

EulerOS Virtualization 3.0.6.0 : glibc (EulerOS-SA-2022-2560)

2022-10-10T00:00:00
nessus
scanner

EulerOS 2.0 SP8 : glibc (EulerOS-SA-2022-1565)

2022-04-25T00:00:00
nessus
scanner

Ubuntu 18.04 LTS / 20.04 LTS : GNU C Library vulnerabilities (USN-5310-1)

2022-03-01T00:00:00
nessus
scanner

EulerOS 2.0 SP2 : glibc (EulerOS-SA-2021-2374)

2021-09-14T00:00:00
almalinux
unix

Moderate: glibc security, bug fix, and enhancement update

2021-11-09T09:08:59
oraclelinux
unix

glibc security update

2021-11-23T00:00:00
oraclelinux
unix

glibc security, bug fix, and enhancement update

2021-11-16T00:00:00
rocky
unix

glibc security, bug fix, and enhancement update

2021-11-09T09:08:59
redhat
unix

(RHSA-2021:4358) Moderate: glibc security, bug fix, and enhancement update

2021-11-09T09:08:59
redhat
unix

(RHSA-2022:0318) Moderate: Red Hat OpenShift distributed tracing 2.1.0 security update

2022-01-27T16:46:55
redhat
unix

(RHSA-2022:0434) Moderate: Release of OpenShift Serverless 1.20.0

2022-02-03T17:07:25
redhat
unix

(RHSA-2021:4032) Low: Openshift Logging 5.2.3 bug fix and security update

2021-11-17T03:27:52
redhat
unix

(RHSA-2022:0842) Important: Release of containers for OSP 16.2 director operator tech preview

2022-03-14T09:17:24
redhat
unix

(RHSA-2021:4845) Moderate: Red Hat OpenShift Container Storage 4.8.5 Security and Bug Fix Update

2021-11-29T13:20:02
redhat
unix

(RHSA-2021:4902) Moderate: ACS 3.67 security and enhancement update

2021-12-01T16:08:19
redhat
unix

(RHSA-2022:0580) Important: Red Hat OpenShift GitOps security update

2022-02-17T21:43:14
redhat
unix

(RHSA-2021:4848) Moderate: Migration Toolkit for Containers (MTC) 1.5.2 security update and bugfix advisory

2021-11-29T14:28:33
redhat
unix

(RHSA-2021:5129) Moderate: Openshift Logging security and bug update (5.3.1)

2021-12-14T16:46:20
redhat
unix

(RHSA-2022:0856) Moderate: Red Hat Advanced Cluster Management 2.2.11 security updates and bug fixes

2022-03-14T12:22:55
redhat
unix

(RHSA-2021:5127) Moderate: Openshift Logging security and bug update (5.2.4)

2021-12-14T16:45:56
redhat
unix

(RHSA-2021:5038) Low: Red Hat Advanced Cluster Management 2.2.10 security updates and bug fixes

2021-12-08T21:27:56
redhat
unix

(RHSA-2021:4914) Moderate: OpenShift Virtualization 4.8.3 Images security and bug fix update

2021-12-02T15:41:38
redhat
unix

(RHSA-2021:5128) Moderate: Openshift Logging security and bug update (5.1.5)

2021-12-14T16:46:13
redhat
unix

(RHSA-2021:5137) Moderate: Openshift Logging Security Release (5.0.10)

2021-12-14T21:31:08
redhat
unix

(RHSA-2021:4627) Moderate: Openshift Logging 5.3.0 bug fix and security update

2021-11-15T12:52:28
redhat
unix

(RHSA-2022:0202) Moderate: Migration Toolkit for Containers (MTC) 1.6.3 security and bug fix update

2022-01-20T06:27:36
suse
unix

Security update for glibc (moderate)

2021-10-18T00:00:00
suse
unix

Security update for glibc (moderate)

2021-10-06T00:00:00
cloudlinux
unix

Fix of CVE: CVE-2021-33574, CVE-2021-35942, CVE-2021-38604

2021-08-19T17:44:27
fedora
unix

[SECURITY] Fedora 33 Update: glibc-2.32-6.fc33

2021-05-22T01:08:46
fedora
unix

[SECURITY] Fedora 34 Update: glibc-2.33-5.fc34

2021-03-19T20:27:10
fedora
unix

[SECURITY] Fedora 34 Update: glibc-2.33-16.fc34

2021-06-14T01:06:20
fedora
unix

[SECURITY] Fedora 33 Update: glibc-2.32-8.fc33

2021-07-07T01:04:22
fedora
unix

[SECURITY] Fedora 33 Update: glibc-2.32-10.fc33

2021-07-20T01:10:16
fedora
unix

[SECURITY] Fedora 34 Update: glibc-2.33-20.fc34

2021-07-14T01:21:26
redhatcve
info

CVE-2021-27645

2021-02-24T19:04:37
redhatcve
info

CVE-2021-33574

2021-05-27T23:10:50
redhatcve
info

CVE-2021-35942

2021-07-01T17:23:06
redhatcve
info

CVE-2021-38604

2021-08-13T17:50:02
cve
NVD

CVE-2021-27645

2021-02-24T15:15:00
cve
NVD

CVE-2021-33574

2021-05-25T22:15:00
cve
NVD

CVE-2021-35942

2021-07-22T18:15:00
cve
NVD

CVE-2021-38604

2021-08-12T16:15:00
gentoo
unix

glibc: Multiple vulnerabilities

2021-07-06T00:00:00
gentoo
unix

GNU C Library: Multiple Vulnerabilities

2022-08-14T00:00:00
ibm
software

Security Bulletin: Redhat glibc Vulnerability affects Watson Speech Services

2023-01-12T21:59:00
ibm
software

Security Bulletin: glibc vulnerability affects IBM Elastic Storage System (CVE-2021-27645)

2022-02-28T11:14:39
ibm
software

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability

2021-12-15T06:24:38
ibm
software

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability

2021-12-15T06:21:22
ibm
software

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability.

2021-12-22T10:07:47
ibm
software

Security Bulletin: glibc Vulnerability affects Watson Speech Services

2023-01-12T21:59:00
ibm
software

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to information disclosure or denial of service in GNU glibc (CVE-2021-35942).

2023-01-12T21:59:00
ibm
software

Security Bulletin: IBM Flex System switch firmware products are affected by a vulnerability in glibc (CVE-2021-35942)

2023-12-07T23:00:02
ibm
software

Security Bulletin: IBM RackSwitch firmware products are affected by a vulnerability in glibc (CVE-2021-35942)

2023-12-07T23:00:02
ibm
software

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability.

2021-12-15T06:15:00
ibm
software

Security Bulletin: App Connect Professional is affected by GNU C Library vulnerability

2021-12-15T05:13:14
ibm
software

Security Bulletin: IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93

2022-03-14T20:12:12
ibm
software

Security Bulletin: Multiple vulnerabilities in expat, glibc, http server, dojo, openssl shipped with IBM Cloud Pak System

2022-08-15T21:35:24
ibm
software

Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities

2023-01-19T13:54:16
ibm
software

Security Bulletin: Multiple security vulnerabilities fixed in Cloud Pak for Automation components

2022-01-19T16:26:59
ibm
software

Security Bulletin: IBM Cloud Transformation Advisor is vulnerable to multiple vulnerabilities

2023-07-26T08:49:33
ibm
software

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues

2023-11-30T18:45:42
ibm
software

Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.

2023-04-11T11:47:27
ibm
software

Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

2023-03-08T18:05:21
mageia
unix

Updated glibc packages fix a security vulnerability

2021-03-17T09:16:07
mageia
unix

Updated glibc packages fix security vulnerability

2021-07-01T02:58:41
mageia
unix

Updated glibc packages fix security vulnerability

2021-07-20T13:46:47
mageia
unix

Updated glibc packages fix security issue

2021-08-14T17:00:09
mageia
unix

Updated glibc packages fixes security vulnerabilities

2021-03-21T13:43:43
debiancve
info

CVE-2021-27645

2021-02-24T15:15:00
debiancve
info

CVE-2021-33574

2021-05-25T22:15:00
debiancve
info

CVE-2021-35942

2021-07-22T18:15:00
debiancve
info

CVE-2021-38604

2021-08-12T16:15:00
ubuntucve
info

CVE-2021-27645

2021-02-24T00:00:00
ubuntucve
info

CVE-2021-35942

2021-07-22T00:00:00
ubuntucve
info

CVE-2021-38604

2021-08-12T00:00:00
ubuntucve
info

CVE-2021-33574

2021-05-25T00:00:00
photon
unix

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0422

2021-08-05T00:00:00
photon
unix

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-1.0-0401

2021-06-09T00:00:00
photon
unix

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0354

2021-06-09T00:00:00
photon
unix

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0377

2021-08-06T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0251

2021-06-08T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0401

2021-06-09T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0422

2021-08-05T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0038

2021-06-02T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-3.0-0251

2021-06-09T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-4.0-0038

2021-06-04T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0077

2021-08-09T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-0281

2021-08-09T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-3.0-0281

2021-08-10T00:00:00
photon
unix

Critical Photon OS Security Update - PHSA-2021-4.0-0077

2021-08-10T00:00:00
veracode
software

Denial Of Service (DoS)

2021-11-17T22:36:14
veracode
software

Denial Of Service (DoS)

2021-11-17T22:36:20
veracode
software

Denial Of Service (DoS)

2021-11-17T22:36:24
prion
NVD

Double free

2021-02-24T15:15:00
prion
NVD

Design/Logic Flaw

2021-05-25T22:15:00
prion
NVD

Design/Logic Flaw

2021-07-22T18:15:00
prion
NVD

Null pointer dereference

2021-08-12T16:15:00
amazon
unix

Low: glibc

2022-01-18T21:37:00
amazon
unix

Medium: glibc

2021-09-08T23:35:00
amazon
unix

Medium: glibc

2023-11-29T22:20:00
f5
software

GNU C Library (glibc) vulnerability CVE-2021-33574

2021-09-24T17:00:00
cbl_mariner
unix

CVE-2021-33574 affecting package glibc 2.28-22

2021-10-05T03:00:55
cbl_mariner
unix

CVE-2021-35942 affecting package glibc 2.28-24

2021-08-11T06:39:32
redos
unix

ROS-20220112-02

2022-01-12T00:00:00
altlinux
unix

Security fix for the ALT Linux 9 package glibc version 6:2.27-alt14

2021-09-23T00:00:00
ubuntu
unix

GNU C Library vulnerabilities

2022-10-25T00:00:00
ubuntu
unix

GNU C Library vulnerabilities

2022-03-01T00:00:00
osv
software

glibc - security update

2022-10-20T00:00:00
debian
unix

[SECURITY] [DLA 3152-1] glibc security update

2022-10-17T15:54:41
cloudfoundry
software

USN-5310-1: GNU C Library vulnerabilities | Cloud Foundry

2023-05-18T00:00:00
ics
info

Siemens SIMATIC S7-1500 TM MFP BIOS

2023-06-15T12:00:00
oracle
software

Oracle Critical Patch Update Advisory - April 2022

2022-04-19T00:00:00
avleonov
blog

Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs

2022-12-30T18:03:13