EUVD-2014-7685

Malware in sbrugna...

SuSE 11.3 Security Update : glibc (SAT Patch Number 10357)

glibc has ben updated to fix three security issues : - wordexp failed to honour WRDENOCMD bsc906371. CVE-2014-7817 - Fixed invalid file descriptor reuse while sending DNS query bsc915526. CVE-2013-7423 - Fixed buffer overflow in wscanf bsc916222 These non-security issues have been fixed:...

glibc security and bug fix update

2.12-1.149.4 - Fix recursive dlopen 1173469. 2.12-1.149.3 - Fix typo in ressend and resquery rh1172023. 2.12-1.149.2 - Fix crashes on invalid input in IBM gconv modules CVE-2014-6040, 1139571. 2.12-1.149.1 - Fix wordexp to honour WRDENOCMD CVE-2014-7817, 1170121...

[ MDVSA-2014:232 ] glibc

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDVSA-2014:232 http://www.mandriva.com/en/support/security/ Package : glibc Date : November 27, 2014 Affected: Business Server 1.0 Problem Description: Updated glibc package fixes security vulnerability: The function...

Mandriva Linux Security Advisory : glibc (MDVSA-2014:232)

Updated glibc package fixes security vulnerability : The function wordexp\ fails to properly handle the WRDENOCMD flag when processing arithmetic inputs in the form of $... where ... can be anything valid. The backticks in the arithmetic epxression are evaluated by in a shell even if WRDENOCMD...

MGASA-2014-0496 Updated glibc packages fix CVE-2014-7817

The function wordexp fails to properly handle the WRDENOCMD flag when processing arithmetic inputs in the form of "$... " where "..." can be anything valid. The backticks in the arithmetic epxression are evaluated by in a shell even if WRDENOCMD forbade command substitution. This allows an attack...