EUVD-2017-18659

Malware in sbrugna...

The vulnerability in the al__cpLocation function of the libpthread library, as well as in the linuxthreads library uClibC and uClibC-ng, allows a hacker to execute arbitrary code.

The vulnerability of the alcpLocation function in the libpthread library, as well as in the uClibC and uClibC-ng libraries, is related to the possibility of memory corruption. Exploiting this vulnerability allows a remote attacker to execute arbitrary code by sending a specially crafted request...

The vulnerability of the C language programming library uClibc and uClibc-ng lies in the possibility of using predictable transaction identifiers during DNS requests, allowing a hacker to redirect users to arbitrary websites.

The vulnerability of the C language programming library uClibc and uClibc-ng lies in the ability to use predictable transaction identifiers during DNS requests. Exploiting this vulnerability allows a malicious actor to send specially crafted DNS packets, thereby causing the DNS cache to store...

In uClibc and uClibc-ng before 1.0.39 incorrect handling of special characters in domain names returned by DNS servers via gethostbyname getaddrinfo gethostbyaddr and getnameinfo can lead to output of wrong hostnames (leading to domain hijacking) or injection into applications (leading to remote code execution XSS applications crashes etc.). In other words a validation step which is expected in any stub resolver does not occur.

...

CVE-2017-9728

In uClibc 0.9.33.2, there is an out-of-bounds read in the getsubexp function in misc/regex/regexec.c when processing a crafted regular expression...