37 matches found
K16865: GNU C Library (glibc) vulnerability CVE-2015-1781
Security Advisory Description A buffer overflow flaw was found in the way glibc's gethostbynamer and other related functions computed the size of a buffer when passed a misaligned buffer as input. An attacker able to make an application call any of these functions with a misaligned buffer could u...
SUSE CVE-2015-1781
Buffer overflow in the gethostbynamer and other unspecified NSS functions in the GNU C Library aka glibc or libc6 before 2.22 allows context-dependent attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response, which triggers a call with a misaligned buffer...
Mageia: Security Advisory (MGASA-2015-0195)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: Vulnerabilities in glibc affect Power Hardware Management Console ( CVE-2015-1781)
Summary glibc is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2015-1781 DESCRIPTION: GNU C Library glibc is vulnerable to a buffer overflow, caused by improper bounds checking by the gethostbynamer and other related...
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2019-1552)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Security Bulletin: GNU C library (glibc) vulnerability affects IBM WebSphere Cast Iron Solution (CVE-2015-1781)
Summary Open source GNU C library glibc vulnerability affects IBM WebSphere Cast Iron Solution. Vulnerability Details CVEID: CVE-2015-1781 DESCRIPTION: GNU C Library glibc is vulnerable to a buffer overflow, caused by improper bounds checking by the gethostbynamer and other related functions. By...
Security Bulletin: Vulnerabilities in NTP and GNU C Library (glibc) affect IBM Flex System EN6131 40Gb Ethernet / IB6131 40Gb Infiniband Switch Firmware
Summary IBM Flex System EN6131 40Gb Ethernet / IB6131 40Gb Infiniband Switch Firmware has addressed the following vulnerabilities in NTP and GNU C Library glibc. Vulnerability Details Summary IBM Flex System EN6131 40Gb Ethernet / IB6131 40Gb Infiniband Switch Firmware has addressed the following...
Security Bulletin: Vulnerabilities in the GNU C Libraries (glibc) affect IBM Flex System Manager(FSM) (CVE-2013-2207, CVE-2014-8121, CVE-2015-1781)
Summary Multiple security vulnerabilities have been discovered in the GNU C Library glibc that is embedded in the IBM FSM. These vulnerabilities are addressed in this bulletin. Vulnerability Details CVEID: CVE-2013-2207 DESCRIPTION: The GNU C Library glibc could allow a local attacker to bypass...
Security Bulletin: TS3000 (TSSC/IMC) is affected by two issues for glibc (CVE-2015-1781, CVE-2013-7423 )
Summary The Total Storage System Console/TS4500 Integrated Management Console is affected by two vulnerabilities in the glibc library. Vulnerability Details CVEID: CVE-2013-7423 DESCRIPTION: GNU glibc could allow a local attacker to obtain sensitive information, caused by the writing of DNS queri...
USN-2985-2 GNU C Library regression | Cloud Foundry
USN-2985-2 GNU C Library regression Medium Vendor GNU C, Canonical Ubuntu Versions Affected Ubuntu 14.04 LTS Description USN-2985-1 fixed vulnerabilities in the GNU C Library. The fix for CVE-2014-9761 introduced a regression which affected applications that use the libm library but were not full...
Ubuntu: Security Advisory (USN-2985-2)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 14.04 LTS : GNU C Library regression (USN-2985-2)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-2985-2 advisory. USN-2985-1 fixed vulnerabilities in the GNU C Library. The fix for CVE-2014-9761 introduced a regression which affected applications that use the libm library but...
Ubuntu: Security Advisory (USN-2985-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 22 : glibc-2.21-11.fc22 (2016-0480defc94)
This updates addresses a critical security vulnerability in the DNS resolver related to AFUNSPEC queries with getaddrinfo CVE-2015-7547. It also includes security fixes for CVE-2015-8777 and CVE-2015-1781. It improves malloc scalability for applications which start and terminate many threads. The...
Debian DSA-3480-1 : eglibc - security update
Several vulnerabilities have been fixed in the GNU C Library, eglibc. The CVE-2015-7547 vulnerability listed below is considered to have critical impact. - CVE-2014-8121 Robin Hack discovered that the nssfiles database did not correctly implement enumeration interleaved with name-based or ID-base...
[SECURITY] [DSA 3480-1] eglibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3480-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
[SECURITY] [DSA 3480-1] eglibc security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3480-1 [email protected] https://www.debian.org/security/ Florian Weimer February 16, 2016 https://www.debian.org/security/faq -...
Debian Security Advisory DSA 3480-1 (eglibc - security update)
Several vulnerabilities have been fixed in the GNU C Library, eglibc. The CVE-2015-7547 vulnerability listed below is considered to have critical impact. CVE-2014-8121 Robin Hack discovered that the nssfiles database did not correctly implement enumeration interleaved with name-based or ID-based...
Debian: Security Advisory (DSA-3480-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Scientific Linux Security Update : glibc on SL7.x x86_64 (20151119)
It was discovered that, under certain circumstances, glibc's getaddrinfo function would send DNS queries to random file descriptors. An attacker could potentially use this flaw to send DNS queries to unintended recipients, resulting in information disclosure or data loss due to the application...