SUSE CVE-2015-5277

The getcontents function in nssfiles/files-XXX.c in the Name Service Switch NSS in GNU C Library aka glibc or libc6 before 2.20 might allow local users to cause a denial of service heap corruption or gain privileges via a long line in the NSS files database...

glibc security update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

glibc security, bug fix, and enhancement update

2.28-151.0.1.el84 - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutexspincount tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list Patrick McGehearty - add optimized memset for emag ...

firefox security update

CentOS Errata and Security Advisory CESA-2018:3005 An update for firefox is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

GNU C Library Name Service Switch Privilege Bypass Vulnerability

GNU C Library is an open source, free C compiler released under the LGPL license. A security vulnerability in the 'getcontents' function in the nssfiles/files-XXX.c file in the Name Service Switch NSS of the GNU C Library allows a local attacker to exploit a specially crafted NSS file database to...

Heap overflow

The getcontents function in nssfiles/files-XXX.c in the Name Service Switch NSS in GNU C Library aka glibc or libc6 before 2.20 might allow local users to cause a denial of service heap corruption or gain privileges via a long line in the NSS files database...

CVE-2015-5277

The getcontents function in nssfiles/files-XXX.c in the Name Service Switch NSS in GNU C Library aka glibc or libc6 before 2.20 might allow local users to cause a denial of service heap corruption or gain privileges via a long line in the NSS files database...

UBUNTU-CVE-2015-5277

The getcontents function in nssfiles/files-XXX.c in the Name Service Switch NSS in GNU C Library aka glibc or libc6 before 2.20 might allow local users to cause a denial of service heap corruption or gain privileges via a long line in the NSS files database...

SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2015:1844-1)

glibc was updated to fix bugs and security issues. Security issues fixed : - A buffer overflow in nssdns was fixed that could lead to crashes. CVE-2015-1781, bsc927080, BZ 18287 - A denial of service attack out of memory in the NSS files backend was fixed CVE-2014-8121, bsc918187, GLIBC BZ 18007...

Amazon Linux AMI : glibc (ALAS-2015-495)

An out-of-bounds read flaw was found in the way glibc's iconv function converted certain encoded data to UTF-8. An attacker able to make an application call the iconv function with a specially crafted argument could use this flaw to crash that application. CVE-2014-6040 It was found that the file...