Oracle Linux 9 : glibc (ELSA-2024-12472)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12472 advisory. - CVE-2024-33599: nscd: buffer overflow in netgroup cache RHEL-34318 - CVE-2024-33600: nscd: null pointer dereferences in netgroup cache -...

CLSA-2024-1719569907 Fix CVE(s): CVE-2024-2961, CVE-2024-33599

SECURITY UPDATE: Buffer overflow in iconv function when converting to ISO-2022-CN-EXT character set - debian/patches/any/CVE-2024-2961.patch: Fix out-of-bound writes in ISO-2022-CN-EXT escape sequences - CVE-2024-2961 SECURITY UPDATE: stack-based buffer overflow in netgroup cache -...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2024-1811)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP11 : glibc (EulerOS-SA-2024-1832)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting string...

CLSA-2024-1718900000 glibc: Fix of 2 CVEs

CVE-2024-2961: fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set - CVE-2024-33599: fix buffer overflow in netgroup cache...

CLSA-2024-1718790660 glibc: Fix of CVE-2024-2961

CVE-2024-2961: Fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set...

Oracle Linux 8 : glibc (ELSA-2024-12440)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-12440 advisory. - CVE-2024-33599: nscd: buffer overflow in netgroup cache RHEL-34264 - CVE-2024-33600: nscd: null pointer dereferences in netgroup cache RHEL-34267 -...

glibc security update

2.28-251.0.2.2 - Forward port of Oracle patches over 2.28-251.2 Reviewed-by: Jose E. Marchesi Oracle history: May-23-2024 Cupertino Miranda - 2.28-251.0.2.1 - Forward port of Oracle patches over 2.28-251.1 Reviewed-by: Jose E. Marchesi May-22-2024 Cupertino Miranda - 2.28-251.0.2 - Forward port o...

SUSE SLES15 Security Update : glibc (SUSE-SU-2024:1977-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:1977-1 advisory. - nscd: Release read lock after resetting timeout - nscd: Fix use-after-free in addgetnetgrentX BZ 23520 - CVE-2024-33599; nscd:...

CLSA-2024-1718024371 glibc: Fix of CVE-2024-2961

CVE-2024-2961: Fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set...

CLSA-2024-1718023873 glibc: Fix of 2 CVEs

CVE-2024-2961: Fix buffer overflow issue in iconv function when converting strings to ISO-2022-CN-EXT character set - CVE-2024-33599: Fix buffer overflow in netgroup cache...

CLSA-2024-1717691587 Fix CVE(s): CVE-2024-2961

SECURITY UPDATE: buffer overflow in iconv function when converting to ISO-2022-CN-EXT character set - debian/patches/any/CVE-2024-2961.patch: fix out-of-bound writes in ISO-2022-CN-EXT escape sequences - CVE-2024-2961...

glibc security update

2.17-326.3 - Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi 2.17-326.3 - nscd: Fix timeout type in netgroup cache RHEL-34263 2.17-326.2 - nscd: Do not use sendfile for the netgroup cache - nscd: Use-after-free in netgroup cache - CVE-2024-33599: nscd: buffer overflow in...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...

Exploit for CVE-2024-2961

Testing CVE-2024-2961 V1 - Under Analysis This repository c...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...

glibc: Out of bounds write in iconv may lead to remote code execution

An out-of-bounds write flaw was found in the ISO-2022-CN-EXT plugin for glibc's iconv library. When converting from UCS4 charset, adding certain escape charterers is required to indicate where the charset was changed to the library. During this process, iconv improperly checks the boundaries of...