MiracleLinux 4 : glibc-2.12-1.209.AXS4.2 (AXSA:2017-1703:03)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1703:03 advisory. Security issues fixed with this release: CVE-2017-1000366 glibc contains a vulnerability that allows specially crafted LDLIBRARYPATH values to manipulate the...

MiracleLinux 7 : glibc-2.17-157.el7.4 (AXSA:2017-1702:02)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1702:02 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make...

EUVD-2017-1547

Malware in sbrugna...

EUVD-2017-1548

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2017-1000366

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - glibc contains a vulnerability that allows specially crafted LDLIBRARYPATH values to manipulate the heap/stack, causing them to alias, potentially resulting in...

RHEL 4 : glibc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - glibc: posixspawnfileactionsaddopen fails to copy the path argument CVE-2014-4043 - glibc: heap/stack gap...

Oracle Linux 5 : glibc (ELSA-2017-1479)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2017-1479 advisory. 2.5-123.0.2.el511.3 - Mitigation for CVE-2017-1000366 glibc: heap/stack gap jumping via unbounded stack allocations. Tenable has extracted the preceding...

K72813580: glibc vulnerabilities CVE-2017-1000408 and CVE-2017-1000409

Security Advisory Description CVE-2017-1000408 A memory leak in glibc 2.1.1 released on May 24, 1999 can be reached and amplified through the LDHWCAPMASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366. CVE-2017-100040...

SUSE CVE-2017-1000409

A buffer overflow in glibc 2.5 released on September 29, 2006 and can be triggered through the LDLIBRARYPATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366...

SUSE: Security Advisory (SUSE-SU-2017:2701-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:1621-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2017:1619-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: Multiple vulnerabilities in sudo, glibc affect IBM SmartCloud Entry (CVE-2017-1000368 CVE-2017-1000366)

Summary Multiple vulnerabilities have been identified in sudo and glibc. Sudo and glibc are used by IBM SmartCloud Entry. IBM SmartCloud Entry has addressed the vulnerabilities Vulnerability Details CVEID: CVE-2017-1000368 DESCRIPTION: sudo could allow a local attacker to gain elevated privileges...

RancherOS < 1.0.3 Local Memory Corruption

The remote host is running a version of RancherOS that is prior to v1.0.3, hence is vulnerable to a local memory-corruption vulnerability. Attackers may be able to exploit this issue to execute arbitrary code with elevated privileges CVE-2017-1000364 Glibc module in Rancheros contains a...

Security Bulletin: A vulnerability in OpenSource GNU Glibc affect IBM Netezza Host Management

Summary OpenSource GNU Glibc is used by IBM Netezza Host Management. IBM Netezza Host Management has addressed the applicable CVE. Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that...

NewStart CGSL MAIN 4.05 : kernel Multiple Vulnerabilities (NS-SA-2019-0099)

The remote NewStart CGSL host, running version MAIN 4.05, has kernel packages installed that are affected by multiple vulnerabilities: - A flaw was found in the way memory was being allocated on the stack for user space binaries. If heap or different memory region and stack memory regions were...

Photon OS 1.0: Glibc / Shadow / Systemd / Wget PHSA-2017-0023 (deprecated)

An update of systemd,wget,shadow,glibc packages for PhotonOS has been released. C Tenable Network Security, Inc. @DEPRECATED@ Disabled on 2/7/2019 The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2017-0023. The text itself is copyright C...

Security Bulletin: A vulnerability in glibc affects IBM Flex System Manager (FSM) (CVE-2017-1000366)

Summary A vulnerability has been discovered in glibc that is embedded in FSM. This bulletin addresses that issue. Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that allows specially...

Security Bulletin: GNU C library (glibc) vulnerability affects IBM Storwize V7000 Unified (CVE-2017-1000366)

Summary IBM Storwize V7000 Unified is shipped with GNU glibc, for which a fix is available for a security vulnerability. Vulnerability Details A GNU C library glibc memory corruption vulnerability affects IBM Storwize V7000 Unified. CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local...

Security Bulletin: IBM Security Proventia Network Active Bypass is affected by glibc vulnerability (CVE-2017-1000366)

Summary IBM Security Proventia Network Active Bypass has addressed the following vulnerability. CVE-2017-1000366 Vulnerability Details CVEID: CVE-2017-1000366 DESCRIPTION: Glibc could allow a local attacker to execute arbitrary code on the system, caused by a vulnerability that allows specially...