(RHSA-2014:1118) Important: glibc security update

2014-09-0200:00:00

access.redhat.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.015 Low

EPSS

Percentile

84.8%

JSON

The glibc packages contain the standard C libraries used by multiple
programs on the system. These packages contain the standard C and the
standard math libraries. Without these two libraries, a Linux system cannot
function properly.

An off-by-one heap-based buffer overflow flaw was found in glibc’s internal
__gconv_translit_find() function. An attacker able to make an application
call the iconv_open() function with a specially crafted argument could
possibly use this flaw to execute arbitrary code with the privileges of
that application. (CVE-2014-5119)

All glibc users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.

OSVersionArchitecturePackageVersionFilename
RedHat6s390xglibc-devel< 2.12-1.107.el6_4.6glibc-devel-2.12-1.107.el6_4.6.s390x.rpm
RedHat6x86_64glibc-common< 2.12-1.47.el6_2.13glibc-common-2.12-1.47.el6_2.13.x86_64.rpm
RedHat5i386glibc-headers< 2.5-58.el5_6.5glibc-headers-2.5-58.el5_6.5.i386.rpm
RedHat5ia64nscd< 2.5-107.el5_9.7nscd-2.5-107.el5_9.7.ia64.rpm
RedHat6ppc64glibc-debuginfo-common< 2.12-1.107.el6_4.6glibc-debuginfo-common-2.12-1.107.el6_4.6.ppc64.rpm
RedHat6s390glibc-debuginfo< 2.12-1.107.el6_4.6glibc-debuginfo-2.12-1.107.el6_4.6.s390.rpm
RedHat5i386glibc-debuginfo-common< 2.5-58.el5_6.5glibc-debuginfo-common-2.5-58.el5_6.5.i386.rpm
RedHat5ppc64glibc-devel< 2.5-107.el5_9.7glibc-devel-2.5-107.el5_9.7.ppc64.rpm
RedHat5x86_64glibc-headers< 2.5-58.el5_6.5glibc-headers-2.5-58.el5_6.5.x86_64.rpm
RedHat5s390xglibc-debuginfo< 2.5-107.el5_9.7glibc-debuginfo-2.5-107.el5_9.7.s390x.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	6	s390x	glibc-devel	< 2.12-1.107.el6_4.6	glibc-devel-2.12-1.107.el6_4.6.s390x.rpm
RedHat	6	x86_64	glibc-common	< 2.12-1.47.el6_2.13	glibc-common-2.12-1.47.el6_2.13.x86_64.rpm
RedHat	5	i386	glibc-headers	< 2.5-58.el5_6.5	glibc-headers-2.5-58.el5_6.5.i386.rpm
RedHat	5	ia64	nscd	< 2.5-107.el5_9.7	nscd-2.5-107.el5_9.7.ia64.rpm
RedHat	6	ppc64	glibc-debuginfo-common	< 2.12-1.107.el6_4.6	glibc-debuginfo-common-2.12-1.107.el6_4.6.ppc64.rpm
RedHat	6	s390	glibc-debuginfo	< 2.12-1.107.el6_4.6	glibc-debuginfo-2.12-1.107.el6_4.6.s390.rpm
RedHat	5	i386	glibc-debuginfo-common	< 2.5-58.el5_6.5	glibc-debuginfo-common-2.5-58.el5_6.5.i386.rpm
RedHat	5	ppc64	glibc-devel	< 2.5-107.el5_9.7	glibc-devel-2.5-107.el5_9.7.ppc64.rpm
RedHat	5	x86_64	glibc-headers	< 2.5-58.el5_6.5	glibc-headers-2.5-58.el5_6.5.x86_64.rpm
RedHat	5	s390x	glibc-debuginfo	< 2.5-107.el5_9.7	glibc-debuginfo-2.5-107.el5_9.7.s390x.rpm