{"modified": "2012-08-27T00:00:00", "id": "ELSA-2012-1207", "title": "glibc security and bug fix update", "edition": 1, "viewCount": 0, "objectVersion": "1.2", "type": "oraclelinux", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "lastseen": "2016-09-04T11:16:49", "description": "[2.5-81.el5_8.7]\n- Fix out of bounds array access in strto* exposed by 847929 patch.\n[2.5-81.el5_8.6]\n- Fix integer overflow leading to buffer overflow in strto* (#847929)\n[2.5-81.el5_8.5]\n- Do not use PT_IEEE_IP ptrace calls (#839411)\n- Update ULPs (#839411)\n- Fix various transcendentals in non-default rounding modes (#839411)", "href": "http://linux.oracle.com/errata/ELSA-2012-1207.html", "cvelist": ["CVE-2012-3480"], "published": "2012-08-27T00:00:00", "history": [], "reporter": "Oracle", "affectedPackage": [{"packageFilename": "nscd-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "nscd"}, {"packageFilename": "glibc-common-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-common"}, {"packageFilename": "glibc-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-common-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc-common"}, {"packageFilename": "glibc-devel-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-devel"}, {"packageFilename": "glibc-2.5-81.el5_8.7.src.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "src", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-2.5-81.el5_8.7.src.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "src", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-2.5-81.el5_8.7.src.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "src", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-utils-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-utils"}, {"packageFilename": "nscd-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "nscd"}, {"packageFilename": "glibc-devel-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc-devel"}, {"packageFilename": "glibc-devel-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc-devel"}, {"packageFilename": "nscd-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "nscd"}, {"packageFilename": "glibc-devel-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-devel"}, {"packageFilename": "glibc-headers-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-headers"}, {"packageFilename": "glibc-common-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-common"}, {"packageFilename": "glibc-utils-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc-utils"}, {"packageFilename": "glibc-headers-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc-headers"}, {"packageFilename": "glibc-2.5-81.el5_8.7.i686.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i686", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-2.5-81.el5_8.7.i686.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i686", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-2.5-81.el5_8.7.i686.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i686", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-utils-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-utils"}, {"packageFilename": "glibc-headers-2.5-81.el5_8.7.x86_64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "x86_64", "OSVersion": "5", "operator": "lt", "packageName": "glibc-headers"}, {"packageFilename": "glibc-2.5-81.el5_8.7.ia64.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "ia64", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}, {"packageFilename": "glibc-2.5-81.el5_8.7.i386.rpm", "packageVersion": "2.5-81.el5_8.7", "OS": "Oracle Linux", "arch": "i386", "OSVersion": "5", "operator": "lt", "packageName": "glibc"}], "references": [], "bulletinFamily": "unix", "hash": "d63b315e1f778250afe848148be6aac037ce1b2222a4001819bdcafffb4accb5", "enchantments": {"vulnersScore": 6.6}}

{"result": {"cve": [{"id": "CVE-2012-3480", "type": "cve", "title": "CVE-2012-3480", "description": "Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified \"related functions\" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.", "published": "2012-08-25T06:29:51", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2012-3480", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-01T11:12:16"}], "openvas": [{"id": "OPENVAS:1361412562310123836", "type": "openvas", "title": "Oracle Linux Local Check: ELSA-2012-1207", "description": "Oracle Linux Local Security Checks ELSA-2012-1207", "published": "2015-10-06T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123836", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:12:02"}, {"id": "OPENVAS:864631", "type": "openvas", "title": "Fedora Update for glibc FEDORA-2012-11927", "description": "Check for the Version of glibc", "published": "2012-08-30T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=864631", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:48"}, {"id": "OPENVAS:881476", "type": "openvas", "title": "CentOS Update for glibc CESA-2012:1207 centos5 ", "description": "Check for the Version of glibc", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=881476", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:39"}, {"id": "OPENVAS:864664", "type": "openvas", "title": "Fedora Update for glibc FEDORA-2012-11928", "description": "Check for the Version of glibc", "published": "2012-08-30T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=864664", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:50"}, {"id": "OPENVAS:870814", "type": "openvas", "title": "RedHat Update for glibc RHSA-2012:1207-01", "description": "Check for the Version of glibc", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870814", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:48"}, {"id": "OPENVAS:881477", "type": "openvas", "title": "CentOS Update for glibc CESA-2012:1208 centos6 ", "description": "Check for the Version of glibc", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=881477", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:44"}, {"id": "OPENVAS:870816", "type": "openvas", "title": "RedHat Update for glibc RHSA-2012:1208-01", "description": "Check for the Version of glibc", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870816", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:30"}, {"id": "OPENVAS:1361412562310120480", "type": "openvas", "title": "Amazon Linux Local Check: ALAS-2012-120", "description": "Amazon Linux Local Security Checks", "published": "2015-09-08T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120480", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:10:57"}, {"id": "OPENVAS:1361412562310123838", "type": "openvas", "title": "Oracle Linux Local Check: ELSA-2012-1208", "description": "Oracle Linux Local Security Checks ELSA-2012-1208", "published": "2015-10-06T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123838", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-02T21:12:03"}, {"id": "OPENVAS:71983", "type": "openvas", "title": "Slackware Advisory SSA:2012-244-01 glibc ", "description": "The remote host is missing an update as announced\nvia advisory SSA:2012-244-01.", "published": "2012-09-10T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=71983", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-07-13T10:50:06"}], "nessus": [{"id": "SL_20120827_GLIBC_ON_SL6_X.NASL", "type": "nessus", "title": "Scientific Linux Security Update : glibc on SL6.x i386/x86_64", "description": "The glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480)\n\nAll users of glibc are advised to upgrade to these updated packages, which contain a backported patch to correct these issues.", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61693", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:24:37"}, {"id": "REDHAT-RHSA-2012-1207.NASL", "type": "nessus", "title": "RHEL 5 : glibc (RHSA-2012:1207)", "description": "Updated glibc packages that fix multiple security issues and one bug are now available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480)\n\nThis update also fixes the following bug :\n\n* Previously, logic errors in various mathematical functions, including exp, exp2, expf, exp2f, pow, sin, tan, and rint, caused inconsistent results when the functions were used with the non-default rounding mode. This could also cause applications to crash in some cases. With this update, the functions now give correct results across the four different rounding modes. (BZ#839411)\n\nAll users of glibc are advised to upgrade to these updated packages, which contain backported patches to correct these issues.", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61690", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-01-06T02:16:30"}, {"id": "ORACLELINUX_ELSA-2012-1208.NASL", "type": "nessus", "title": "Oracle Linux 6 : glibc (ELSA-2012-1208)", "description": "From Red Hat Security Advisory 2012:1208 :\n\nUpdated glibc packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480)\n\nAll users of glibc are advised to upgrade to these updated packages, which contain a backported patch to correct these issues.", "published": "2013-07-12T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=68606", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:24:57"}, {"id": "SUSE_SU-2012-1667-1.NASL", "type": "nessus", "title": "SUSE SLED10 / SLES10 Security Update : glibc (SUSE-SU-2012:1667-1)", "description": "This update for GNU C library (glibc) fixes multiple integer overflows in strtod and related functions.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2015-05-20T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=83570", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:25:12"}, {"id": "REDHAT-RHSA-2012-1208.NASL", "type": "nessus", "title": "RHEL 6 : glibc (RHSA-2012:1208)", "description": "Updated glibc packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nThe glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480)\n\nAll users of glibc are advised to upgrade to these updated packages, which contain a backported patch to correct these issues.", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61691", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-01-06T02:15:56"}, {"id": "FEDORA_2012-11963.NASL", "type": "nessus", "title": "Fedora 18 : glibc-2.16-8.fc18 (2012-11963)", "description": "- Fix integer overflow leading to buffer overflow in strto* (#847718)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2012-09-18T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=62130", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:24:17"}, {"id": "FEDORA_2012-11928.NASL", "type": "nessus", "title": "Fedora 16 : glibc-2.14.90-24.fc16.9 (2012-11928)", "description": "- Fix integer overflow leading to buffer overflow in strto* (#847718)\n\nAvoid unbound alloca in vfprintf. (#841318)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61686", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:26:43"}, {"id": "SL_20120827_GLIBC_ON_SL5_X.NASL", "type": "nessus", "title": "Scientific Linux Security Update : glibc on SL5.x i386/x86_64", "description": "The glibc packages provide the standard C and standard math libraries used by multiple programs on the system. Without these libraries, the Linux system cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. (CVE-2012-3480)\n\nThis update also fixes the following bug :\n\n - Previously, logic errors in various mathematical functions, including exp, exp2, expf, exp2f, pow, sin, tan, and rint, caused inconsistent results when the functions were used with the non-default rounding mode.\n This could also cause applications to crash in some cases. With this update, the functions now give correct results across the four different rounding modes.\n\nAll users of glibc are advised to upgrade to these updated packages, which contain backported patches to correct these issues.", "published": "2012-08-28T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61692", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:24:13"}, {"id": "SLACKWARE_SSA_2012-244-01.NASL", "type": "nessus", "title": "Slackware 13.1 / 13.37 / current : glibc (SSA:2012-244-01)", "description": "New glibc packages are available for Slackware 13.1, 13.37, and\n-current to fix security issues.", "published": "2012-09-04T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61748", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:23:39"}, {"id": "FEDORA_2012-11927.NASL", "type": "nessus", "title": "Fedora 17 : glibc-2.15-56.fc17 (2012-11927)", "description": "- Fix integer overflow leading to buffer overflow in strto* (#847718)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2012-08-20T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61584", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-26T17:23:00"}], "centos": [{"id": "CESA-2012:1208", "type": "centos", "title": "glibc, nscd security update", "description": "**CentOS Errata and Security Advisory** CESA-2012:1208\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-August/018828.html\n\n**Affected packages:**\nglibc\nglibc-common\nglibc-devel\nglibc-headers\nglibc-static\nglibc-utils\nnscd\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1208.html", "published": "2012-08-27T15:18:45", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2012-August/018828.html", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-12-05T20:01:18"}, {"id": "CESA-2012:1207", "type": "centos", "title": "glibc, nscd security update", "description": "**CentOS Errata and Security Advisory** CESA-2012:1207\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2012-August/018826.html\n\n**Affected packages:**\nglibc\nglibc-common\nglibc-devel\nglibc-headers\nglibc-utils\nnscd\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2012-1207.html", "published": "2012-08-27T12:45:54", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://lists.centos.org/pipermail/centos-announce/2012-August/018826.html", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-12-05T20:00:49"}], "exploitdb": [{"id": "EDB-ID:37631", "type": "exploitdb", "title": "GNU glibc Multiple Local Stack Buffer Overflow Vulnerabilities", "description": "GNU glibc Multiple Local Stack Buffer Overflow Vulnerabilities. CVE-2012-3480. Local exploit for linux platform", "published": "2012-08-13T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.exploit-db.com/exploits/37631/", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-02-04T06:14:44"}], "redhat": [{"id": "RHSA-2012:1207", "type": "redhat", "title": "(RHSA-2012:1207) Moderate: glibc security and bug fix update", "description": "The glibc packages provide the standard C and standard math libraries used\nby multiple programs on the system. Without these libraries, the Linux\nsystem cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows,\nwere found in glibc's functions for converting a string to a numeric\nrepresentation (strtod(), strtof(), and strtold()). If an application used\nsuch a function on attacker controlled input, it could cause the\napplication to crash or, potentially, execute arbitrary code.\n(CVE-2012-3480)\n\nThis update also fixes the following bug:\n\n* Previously, logic errors in various mathematical functions, including\nexp, exp2, expf, exp2f, pow, sin, tan, and rint, caused inconsistent\nresults when the functions were used with the non-default rounding mode.\nThis could also cause applications to crash in some cases. With this\nupdate, the functions now give correct results across the four different\nrounding modes. (BZ#839411)\n\nAll users of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\n", "published": "2012-08-27T04:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2012:1207", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-04T11:17:46"}, {"id": "RHSA-2012:1208", "type": "redhat", "title": "(RHSA-2012:1208) Moderate: glibc security update", "description": "The glibc packages provide the standard C and standard math libraries used\nby multiple programs on the system. Without these libraries, the Linux\nsystem cannot function properly.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows,\nwere found in glibc's functions for converting a string to a numeric\nrepresentation (strtod(), strtof(), and strtold()). If an application used\nsuch a function on attacker controlled input, it could cause the\napplication to crash or, potentially, execute arbitrary code.\n(CVE-2012-3480)\n\nAll users of glibc are advised to upgrade to these updated packages, which\ncontain a backported patch to correct these issues.\n", "published": "2012-08-27T04:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://access.redhat.com/errata/RHSA-2012:1208", "cvelist": ["CVE-2012-3480"], "lastseen": "2017-03-07T03:19:15"}, {"id": "RHSA-2012:1325", "type": "redhat", "title": "(RHSA-2012:1325) Important: rhev-hypervisor6 security and bug fix update", "description": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: A subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nA flaw was found in the way QEMU handled VT100 terminal escape sequences\nwhen emulating certain character devices. A guest user with privileges to\nwrite to a character device that is emulated on the host using a virtual\nconsole back-end could use this flaw to crash the qemu-kvm process on the\nhost or, possibly, escalate their privileges on the host. (CVE-2012-3515)\n\nThis flaw did not affect the default use of Red Hat Enterprise\nVirtualization Hypervisor: it is not possible to add a device that uses a\nvirtual console back-end via Red Hat Enterprise Virtualization Manager.\n\nTo specify a virtual console back-end for a device and therefore be\nvulnerable to this issue, the device would have to be created another way,\nfor example, by using a VDSM hook. Note that at this time hooks can only be\nused on Red Hat Enterprise Linux hosts, not Red Hat Enterprise\nVirtualization Hypervisor.\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows,\nwere found in glibc's functions for converting a string to a numeric\nrepresentation (strtod(), strtof(), and strtold()). If an application used\nsuch a function on attacker controlled input, it could cause the\napplication to crash or, potentially, execute arbitrary code.\n(CVE-2012-3480)\n\nRed Hat would like to thank the Xen project for reporting the CVE-2012-3515\nissue.\n\nThis updated package provides updated components that include fixes for\nvarious security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2012-4244 (bind issue)\n\nCVE-2012-3524 (dbus issue)\n\nCVE-2012-2313, CVE-2012-2384, CVE-2012-2390, CVE-2012-3430, and\nCVE-2012-3552 (kernel issues)\n\nCVE-2012-3445 (libvirt issue)\n\nCVE-2011-3102 and CVE-2012-2807 (libxml2 issues)\n\nCVE-2011-1202, CVE-2011-3970, CVE-2012-2825, CVE-2012-2870, CVE-2012-2871,\nand CVE-2012-2893 (libxslt issues)\n\nThis updated Red Hat Enterprise Virtualization Hypervisor package also\nfixes the following bug:\n\n* Previously, the Manager listed all installed Hypervisor ISO images as\navailable even when they did not support the VDSM compatibility version\nrequired by the selected host. The rhev-hypervisor6 package now maintains a\ntext file for each installed ISO image. The file lists the VDSM\ncompatibility versions supported by the relevant ISO image. The Manager\nuses this information to ensure that only those Hypervisor ISO images that\nare relevant to the selected host are listed. (BZ#856827)\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which fixes these issues.\n", "published": "2012-10-02T04:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "https://access.redhat.com/errata/RHSA-2012:1325", "cvelist": ["CVE-2012-2390", "CVE-2011-1202", "CVE-2012-2893", "CVE-2012-2871", "CVE-2012-2825", "CVE-2012-2313", "CVE-2012-3515", "CVE-2011-3970", "CVE-2012-3480", "CVE-2012-4244", "CVE-2012-2384", "CVE-2012-3524", "CVE-2012-2870", "CVE-2011-3102", "CVE-2012-3445", "CVE-2012-3552", "CVE-2012-2807", "CVE-2012-3430"], "lastseen": "2017-03-10T07:18:40"}], "oraclelinux": [{"id": "ELSA-2012-1208", "type": "oraclelinux", "title": "glibc security update", "description": "[2.12-1.80.el6_3.5]\n- Fix integer overflow leading to buffer overflow in strto*\n and related out of bounds array index (#847931)", "published": "2012-08-27T00:00:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://linux.oracle.com/errata/ELSA-2012-1208.html", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-04T11:16:04"}], "amazon": [{"id": "ALAS-2012-120", "type": "amazon", "title": "Medium: glibc", "description": "**Issue Overview:**\n\nMultiple integer overflow flaws, leading to stack-based buffer overflows, were found in glibc's functions for converting a string to a numeric representation (strtod(), strtof(), and strtold()). If an application used such a function on attacker controlled input, it could cause the application to crash or, potentially, execute arbitrary code. ([CVE-2012-3480 __](<https://access.redhat.com/security/cve/CVE-2012-3480>))\n\n \n**Affected Packages:** \n\n\nglibc\n\n \n**Issue Correction:** \nRun _yum update glibc_ to update your system. \n\n \n**New Packages:**\n \n \n i686: \n glibc-static-2.12-1.80.42.amzn1.i686 \n glibc-2.12-1.80.42.amzn1.i686 \n glibc-common-2.12-1.80.42.amzn1.i686 \n glibc-utils-2.12-1.80.42.amzn1.i686 \n glibc-devel-2.12-1.80.42.amzn1.i686 \n glibc-debuginfo-2.12-1.80.42.amzn1.i686 \n glibc-headers-2.12-1.80.42.amzn1.i686 \n nscd-2.12-1.80.42.amzn1.i686 \n glibc-debuginfo-common-2.12-1.80.42.amzn1.i686 \n \n src: \n glibc-2.12-1.80.42.amzn1.src \n \n x86_64: \n glibc-utils-2.12-1.80.42.amzn1.x86_64 \n nscd-2.12-1.80.42.amzn1.x86_64 \n glibc-debuginfo-2.12-1.80.42.amzn1.x86_64 \n glibc-common-2.12-1.80.42.amzn1.x86_64 \n glibc-static-2.12-1.80.42.amzn1.x86_64 \n glibc-2.12-1.80.42.amzn1.x86_64 \n glibc-debuginfo-common-2.12-1.80.42.amzn1.x86_64 \n glibc-devel-2.12-1.80.42.amzn1.x86_64 \n glibc-headers-2.12-1.80.42.amzn1.x86_64 \n \n \n", "published": "2012-09-04T10:23:00", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://alas.aws.amazon.com/ALAS-2012-120.html", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-28T21:04:14"}], "slackware": [{"id": "SSA-2012-244-01", "type": "slackware", "title": "glibc", "description": "New glibc packages are available for Slackware 13.1, 13.37, and -current to\nfix security issues.\n\n\nHere are the details from the Slackware 13.37 ChangeLog:\n\npatches/packages/glibc-2.13-i486-6_slack13.37.txz: Rebuilt.\n Patched multiple integer overflows in the strtod, strtof, strtold, and\n strtod_l functions in stdlib in the GNU C Library allow local users to\n cause a denial of service (application crash) and possibly execute\n arbitrary code via a long string, which triggers a stack-based buffer\n overflow.\n For more information, see:\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3480\n (* Security fix *)\npatches/packages/glibc-i18n-2.13-i486-6_slack13.37.txz: Rebuilt.\npatches/packages/glibc-profile-2.13-i486-6_slack13.37.txz: Rebuilt.\npatches/packages/glibc-solibs-2.13-i486-6_slack13.37.txz: Rebuilt.\npatches/packages/glibc-zoneinfo-2.13-noarch-6_slack13.37.txz: Rebuilt.\n\nWhere to find the new packages:\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the &quot;Get Slack&quot; section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated packages for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/glibc-2.11.1-i486-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/glibc-i18n-2.11.1-i486-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/glibc-profile-2.11.1-i486-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/glibc-solibs-2.11.1-i486-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/glibc-zoneinfo-2.11.1-noarch-7_slack13.1.txz\n\nUpdated packages for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/glibc-2.11.1-x86_64-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/glibc-i18n-2.11.1-x86_64-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/glibc-profile-2.11.1-x86_64-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/glibc-solibs-2.11.1-x86_64-7_slack13.1.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/glibc-zoneinfo-2.11.1-noarch-7_slack13.1.txz\n\nUpdated packages for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/glibc-2.13-i486-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/glibc-i18n-2.13-i486-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/glibc-profile-2.13-i486-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/glibc-solibs-2.13-i486-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/glibc-zoneinfo-2.13-noarch-6_slack13.37.txz\n\nUpdated packages for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/glibc-2.13-x86_64-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/glibc-i18n-2.13-x86_64-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/glibc-profile-2.13-x86_64-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/glibc-solibs-2.13-x86_64-6_slack13.37.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/glibc-zoneinfo-2.13-noarch-6_slack13.37.txz\n\nUpdated packages for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/glibc-solibs-2.15-i486-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/a/glibc-zoneinfo-2012e_2012e-noarch-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/glibc-2.15-i486-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/glibc-i18n-2.15-i486-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/l/glibc-profile-2.15-i486-6.txz\n\nUpdated packages for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/glibc-solibs-2.15-x86_64-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/a/glibc-zoneinfo-2012e_2012e-noarch-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/glibc-2.15-x86_64-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/glibc-i18n-2.15-x86_64-6.txz\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/l/glibc-profile-2.15-x86_64-6.txz\n\n\nMD5 signatures:\n\nSlackware 13.1 packages:\nedd13967ed3d8dec440a89ee5289fbca glibc-2.11.1-i486-7_slack13.1.txz\n6f32d223d76deeb7b9f3a21922bd01b5 glibc-i18n-2.11.1-i486-7_slack13.1.txz\na0e1250d433bbb79a3ba08b9c7d71e51 glibc-profile-2.11.1-i486-7_slack13.1.txz\n864ca9b87dfb11785128133cfea320db glibc-solibs-2.11.1-i486-7_slack13.1.txz\nf7561370aae626dca40bbbdfd51dfda9 glibc-zoneinfo-2.11.1-noarch-7_slack13.1.txz\n\nSlackware x86_64 13.1 packages:\nfc12fd088f1e537258650875fec86438 glibc-2.11.1-x86_64-7_slack13.1.txz\n7a7e5b5303ae013201d80ace00ef2bd7 glibc-i18n-2.11.1-x86_64-7_slack13.1.txz\nfd15e380056b751d633a9d5f68cb2203 glibc-profile-2.11.1-x86_64-7_slack13.1.txz\nb5b6dc3c09d53622098ea9d24dc7072e glibc-solibs-2.11.1-x86_64-7_slack13.1.txz\nf0697995c80b6e636b77336d68095826 glibc-zoneinfo-2.11.1-noarch-7_slack13.1.txz\n\nSlackware 13.37 packages:\n981ea852e4a84e52581eb8552a0d560d glibc-2.13-i486-6_slack13.37.txz\ndb61d214708227d74794dce0bf20e413 glibc-i18n-2.13-i486-6_slack13.37.txz\n58a459cbe063222332efd9f206d6debc glibc-profile-2.13-i486-6_slack13.37.txz\n0608e56b8e2505dede8788929b3f3e6c glibc-solibs-2.13-i486-6_slack13.37.txz\nc054e6efb42b94da65a808d435992307 glibc-zoneinfo-2.13-noarch-6_slack13.37.txz\n\nSlackware x86_64 13.37 packages:\n683c0976cf447451f70ad89e938b9777 glibc-2.13-x86_64-6_slack13.37.txz\na1fd86ad6c472f6de29f20ae75af0f5a glibc-i18n-2.13-x86_64-6_slack13.37.txz\n7e1400cb7a85ac091ab481d3df724b85 glibc-profile-2.13-x86_64-6_slack13.37.txz\nb14d793b43de47999ceec4013671d939 glibc-solibs-2.13-x86_64-6_slack13.37.txz\n04f95620164ab72f4b3739881ce95adb glibc-zoneinfo-2.13-noarch-6_slack13.37.txz\n\nSlackware -current packages:\na3cd88ff0d0dcacfa43c0003afddc7a8 a/glibc-solibs-2.15-i486-6.txz\nb8fd7fab60bcd4b3e72c75b41f2a1463 a/glibc-zoneinfo-2012e_2012e-noarch-6.txz\n98bb23242f559cad59f4e3bd7b7ab63f l/glibc-2.15-i486-6.txz\nd2768f1d5d17a66288d6f6d5525fade0 l/glibc-i18n-2.15-i486-6.txz\n8f909602ea32f81950731bcef6a28533 l/glibc-profile-2.15-i486-6.txz\n\nSlackware x86_64 -current packages:\n538e100455adc41cf41db73cdbe51685 a/glibc-solibs-2.15-x86_64-6.txz\n3dbcddbdc4972049e633c588f3fbf182 a/glibc-zoneinfo-2012e_2012e-noarch-6.txz\ne2801fdd45ea6d26a7f3b28111c1ea45 l/glibc-2.15-x86_64-6.txz\nfc500389aecef3bbbd574f83fe564ddc l/glibc-i18n-2.15-x86_64-6.txz\neb2968f0e1fa932d79c4d32c546ae101 l/glibc-profile-2.15-x86_64-6.txz\n\n\nInstallation instructions:\n\nUpgrade the packages as root:\n > upgradepkg glibc-*.txz", "published": "2012-08-31T11:37:01", "cvss": {"score": 4.6, "vector": "AV:LOCAL/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.782382", "cvelist": ["CVE-2012-3480"], "lastseen": "2016-09-07T19:54:33"}], "ubuntu": [{"id": "USN-1589-1", "type": "ubuntu", "title": "GNU C Library vulnerabilities", "description": "It was discovered that positional arguments to the printf() family \nof functions were not handled properly in the GNU C Library. An \nattacker could possibly use this to cause a stack-based buffer \noverflow, creating a denial of service or possibly execute arbitrary \ncode. ([CVE-2012-3404](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3404>), [CVE-2012-3405](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3405>), [CVE-2012-3406](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3406>))\n\nIt was discovered that multiple integer overflows existed in the \nstrtod(), strtof() and strtold() functions in the GNU C Library. An \nattacker could possibly use this to trigger a stack-based buffer \noverflow, creating a denial of service or possibly execute arbitrary \ncode. ([CVE-2012-3480](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3480>))", "published": "2012-10-01T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.ubuntu.com/usn/usn-1589-1", "cvelist": ["CVE-2012-3404", "CVE-2012-3405", "CVE-2012-3480", "CVE-2012-3406"], "lastseen": "2017-05-01T08:29:04"}, {"id": "USN-1589-2", "type": "ubuntu", "title": "GNU C Library regression", "description": "USN-1589-1 fixed vulnerabilities in the GNU C Library. One of the updates \nexposed a regression in the floating point parser. This update fixes the \nproblem.\n\nWe apologize for the inconvenience.\n\nOriginal advisory details:\n\nIt was discovered that positional arguments to the printf() family \nof functions were not handled properly in the GNU C Library. An \nattacker could possibly use this to cause a stack-based buffer \noverflow, creating a denial of service or possibly execute arbitrary \ncode. ([CVE-2012-3404](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3404>), [CVE-2012-3405](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3405>), [CVE-2012-3406](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3406>)) \n \nIt was discovered that multiple integer overflows existed in the \nstrtod(), strtof() and strtold() functions in the GNU C Library. An \nattacker could possibly use this to trigger a stack-based buffer \noverflow, creating a denial of service or possibly execute arbitrary \ncode. ([CVE-2012-3480](<http://people.ubuntu.com/~ubuntu-security/cve/CVE-2012-3480>))", "published": "2012-12-17T00:00:00", "cvss": {"score": 6.8, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://www.ubuntu.com/usn/usn-1589-2", "cvelist": ["CVE-2012-3404", "CVE-2012-3405", "CVE-2012-3480", "CVE-2012-3406"], "lastseen": "2017-05-01T08:29:28"}], "vmware": [{"id": "VMSA-2012-0018", "type": "vmware", "title": "VMware security updates for vCSA, vCenter Server, and ESXi", "description": "a. vCenter Server Appliance directory traversal \n \n\n\nThe vCenter Server Appliance (vCSA) contains a directory traversal vulnerability that allows an authenticated remote user to retrieve arbitrary files. Exploitation of this issue may expose sensitive information stored on the server. \n \nVMware would like to thank Alexander Minozhenko from ERPScan for reporting this issue to us. \n \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2012-6324 to this issue. \n \nColumn 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.\n", "published": "2012-12-20T00:00:00", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}, "href": "https://www.vmware.com/security/advisories/VMSA-2012-0018.html", "cvelist": ["CVE-2012-0864", "CVE-2011-4609", "CVE-2012-6325", "CVE-2012-3404", "CVE-2012-6326", "CVE-2012-6324", "CVE-2012-3405", "CVE-2010-0830", "CVE-2012-3480", "CVE-2009-5029", "CVE-2012-3406", "CVE-2011-1089", "CVE-2009-5064"], "lastseen": "2016-09-04T11:19:39"}], "gentoo": [{"id": "GLSA-201503-04", "type": "gentoo", "title": "GNU C Library: Multiple vulnerabilities", "description": "### Background\n\nThe GNU C library is the standard C library used by Gentoo Linux systems. \n\n### Description\n\nMultiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA local attacker may be able to execute arbitrary code or cause a Denial of Service condition,. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll glibc users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=sys-libs/glibc-2.19-r1\"", "published": "2015-03-08T00:00:00", "cvss": {"score": 10, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}, "href": "https://security.gentoo.org/glsa/201503-04", "cvelist": ["CVE-2015-0235", "CVE-2013-0242", "CVE-2014-4043", "CVE-2012-3404", "CVE-2013-4788", "CVE-2012-3405", "CVE-2012-4412", "CVE-2012-4424", "CVE-2013-4332", "CVE-2012-3480", "CVE-2013-2207", "CVE-2013-1914", "CVE-2012-6656", "CVE-2013-4458", "CVE-2013-4237", "CVE-2012-3406"], "lastseen": "2016-09-06T19:46:22"}], "debian": [{"id": "DLA-165", "type": "debian", "title": "eglibc -- LTS security update", "description": "Several vulnerabilities have been fixed in eglibc, Debian's version of the GNU C library.\n\n * #553206, [CVE-2015-1472](<https://security-tracker.debian.org/tracker/CVE-2015-1472>), [CVE-2015-1473](<https://security-tracker.debian.org/tracker/CVE-2015-1473>)\n\nThe scanf family of functions do not properly limit stack allocation, which allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code.\n\n * [CVE-2012-3405](<https://security-tracker.debian.org/tracker/CVE-2012-3405>)\n\nThe printf family of functions do not properly calculate a buffer length, which allows context-dependent attackers to bypass the FORTIFY_SOURCE format-string protection mechanism and cause a denial of service.\n\n * [CVE-2012-3406](<https://security-tracker.debian.org/tracker/CVE-2012-3406>)\n\nThe printf family of functions do not properly limit stack allocation, which allows context-dependent attackers to bypass the FORTIFY_SOURCE format-string protection mechanism and cause a denial of service (crash) or possibly execute arbitrary code via a crafted format string.\n\n * [CVE-2012-3480](<https://security-tracker.debian.org/tracker/CVE-2012-3480>)\n\nMultiple integer overflows in the strtod, strtof, strtold, strtod_l, and other related functions allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.\n\n * [CVE-2012-4412](<https://security-tracker.debian.org/tracker/CVE-2012-4412>)\n\nInteger overflow in the strcoll and wcscoll functions allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string, which triggers a heap-based buffer overflow.\n\n * [CVE-2012-4424](<https://security-tracker.debian.org/tracker/CVE-2012-4424>)\n\nStack-based buffer overflow in the strcoll and wcscoll functions allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string that triggers a malloc failure and use of the alloca function.\n\n * [CVE-2013-0242](<https://security-tracker.debian.org/tracker/CVE-2013-0242>)\n\nBuffer overflow in the extend_buffers function in the regular expression matcher allows context-dependent attackers to cause a denial of service (memory corruption and crash) via crafted multibyte characters.\n\n * [CVE-2013-1914](<https://security-tracker.debian.org/tracker/CVE-2013-1914>), [CVE-2013-4458](<https://security-tracker.debian.org/tracker/CVE-2013-4458>)\n\nStack-based buffer overflow in the getaddrinfo function allows remote attackers to cause a denial of service (crash) via a hostname or IP address that triggers a large number of domain conversion results.\n\n * [CVE-2013-4237](<https://security-tracker.debian.org/tracker/CVE-2013-4237>)\n\nreaddir_r allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a malicious NTFS image or CIFS service.\n\n * [CVE-2013-4332](<https://security-tracker.debian.org/tracker/CVE-2013-4332>)\n\nMultiple integer overflows in malloc/malloc.c allow context-dependent attackers to cause a denial of service (heap corruption) via a large value to the pvalloc, valloc, posix_memalign, memalign, or aligned_alloc functions.\n\n * [CVE-2013-4357](<https://security-tracker.debian.org/tracker/CVE-2013-4357>)\n\nThe getaliasbyname, getaliasbyname_r, getaddrinfo, getservbyname, getservbyname_r, getservbyport, getservbyport_r, and glob functions do not properly limit stack allocation, which allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code.\n\n * [CVE-2013-4788](<https://security-tracker.debian.org/tracker/CVE-2013-4788>)\n\nWhen the GNU C library is statically linked into an executable, the PTR_MANGLE implementation does not initialize the random value for the pointer guard, so that various hardening mechanisms are not effective.\n\n * [CVE-2013-7423](<https://security-tracker.debian.org/tracker/CVE-2013-7423>)\n\nThe send_dg function in resolv/res_send.c does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of requests that trigger a call to the getaddrinfo function.\n\n * [CVE-2013-7424](<https://security-tracker.debian.org/tracker/CVE-2013-7424>)\n\nThe getaddrinfo function may attempt to free an invalid pointer when handling IDNs (Internationalised Domain Names), which allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code.\n\n * [CVE-2014-4043](<https://security-tracker.debian.org/tracker/CVE-2014-4043>)\n\nThe posix_spawn_file_actions_addopen function does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities.\n\nFor the oldstable distribution (squeeze), these problems have been fixed in version 2.11.3-4+deb6u5.\n\nFor the stable distribution (wheezy), these problems were fixed in version 2.13-38+deb7u8 or earlier.", "published": "2015-03-06T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "http://www.debian.org/security/2015/dla-165", "cvelist": ["CVE-2013-0242", "CVE-2014-4043", "CVE-2013-4788", "CVE-2012-3405", "CVE-2012-4412", "CVE-2012-4424", "CVE-2013-4357", "CVE-2013-4332", "CVE-2012-3480", "CVE-2013-1914", "CVE-2013-4458", "CVE-2015-1473", "CVE-2015-1472", "CVE-2013-4237", "CVE-2013-7423", "CVE-2012-3406", "CVE-2013-7424"], "lastseen": "2016-09-02T12:57:02"}]}}