Download
| Alert*
oval:org.secpod.oval:def:506490
The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: Arbitrary read in wordexp ... oval:org.secpod.oval:def:89043999 This update for glibc fixes the following issues: - CVE-2017-18269: Fix SSE2 memmove issue when crossing 2GB boundary - CVE-2018-11236: Fix overflow in path length computation - CVE-2018-11237: Don"t write beyond buffer destination in __mempcpy_avx512_no_vzeroupper Non security bugs fixed: - Fix ... oval:org.secpod.oval:def:89044019 This update for glibc fixes the following issues: Security issue fixed: - CVE-2017-15671: Fixed memory leak in glob with GLOB_TILDE . Non-security issue fixed: - Avoid access beyond memory bounds in pthread_attr_getaffinity_np . - Remove improper assert in dlclose . oval:org.secpod.oval:def:1503999 nscd is installed oval:org.secpod.oval:def:89044687 This update for glibc fixes the following issues: - CVE-2017-1000366: Fix a potential privilege escalation vulnerability that allowed unprivileged system users to manipulate the stack of setuid binaries to gain special privileges. [bsc#1039357] oval:org.secpod.oval:def:607567 nscd is installed oval:org.secpod.oval:def:86357 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: Off-by-one buffer overflow/ ... oval:org.secpod.oval:def:89003191 This update for glibc fixes the following issues: Security issue fixed: - CVE-2015-5180: Fixed a NULL pointer dereference with internal QTYPE . Feature work: - IBM zSeries arch13 hardware support in glibc added Other issue addressed: - Fixed a concurrency issue with ldconfig . oval:org.secpod.oval:def:89045140 This update for glibc fixes the following issues: - Drop old fix that could break services that start before IPv6 is up. - Do not copy d_name field of struct dirent. - Fix memory leak in _nss_dns_gethostbyname4_r. - Relocate DSOs in dependency order, fixing a potential crash during symbol relocat ... oval:org.secpod.oval:def:89045309 This update for glibc fixes the following issues: - CVE-2015-7547: A stack-based buffer overflow in getaddrinfo allowed remote attackers to cause a crash or execute arbitrary code via crafted and timed DNS responses - CVE-2015-8777: Insufficient checking of LD_POINTER_GUARD environment variable all ... oval:org.secpod.oval:def:19500147 A stack based buffer-overflow vulnerability was found in the deprecated compatibility function clnt_create in the sunrpc's clnt_gen.c module of the GNU C Library through 2.34. This vulnerability copies its hostname argument onto the stack without validating its length, which may result in a buffer ... oval:org.secpod.oval:def:89050342 This update for glibc fixes the following issues: Security issue fixed: - CVE-2019-19126: Fixed to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition . Bug fixes: - Fixed z15 strstr implementation that can return incorrect results if search ... oval:org.secpod.oval:def:89050244 This update for glibc fixes the following issues: - CVE-2020-10029: Fixed a potential overflow in on-stack buffer during range reduction . - Fixed an issue where pthread were not always locked correctly . - Document mprotect and introduce section on memory protection . oval:org.secpod.oval:def:89003415 This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: Fixed a heap-based buffer over-read via an attempted case-insensitive regular-expression match . - CVE-2009-5155: Fixed a denial of service in parse_reg_exp . Non-security issues fixed: - Added cfi information ... oval:org.secpod.oval:def:89048005 This update for glibc fixes the following issues: - CVE-2015-8985: Fixed assertion failure in pop_fail_stack when executing a malformed regexp - x86: fix stack alignment in pthread_cond_[timed]wait - Recognize ppc64p7 arch to build for power7 oval:org.secpod.oval:def:89050636 This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: Fixed a heap-based buffer over-read via an attempted case-insensitive regular-expression match . - CVE-2009-5155: Fixed a denial of service in parse_reg_exp . Non-security issues fixed: - Does no longer compres ... oval:org.secpod.oval:def:89003245 This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: regex: fix read overrun - CVE-2016-10739: Fully parse IPv4 address strings - CVE-2009-5155: ERE "0|0|\1|0" causes regexec undefined behavior Non-security issues fixed: - Enable TLE only if GLIBC_ELISION_ENAB ... oval:org.secpod.oval:def:89003322 This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: Fixed a heap-based buffer over-read via an attempted case-insensitive regular-expression match . - CVE-2009-5155: Fixed a denial of service in parse_reg_exp . Non-security issues fixed: - Added cfi information ... oval:org.secpod.oval:def:2500371 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. oval:org.secpod.oval:def:1505260 [2.28-164.0.1] - Merge of RH patches for ol8-u5 beta release Review-exception: Routine merge - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list - add optimized memset for emag - add an ASI ... oval:org.secpod.oval:def:1700798 The mq_notify function in the GNU C Library has a use-after-free. It may use the notification thread attributes object after it has been freed by the caller, leading to a denial of service or possibly unspecified other impact oval:org.secpod.oval:def:1505311 [2.28-164.0.1] - Merge of RH patches for ol8-u5 beta release Review-exception: Routine merge - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list - add optimized memset for emag - add an ASI ... oval:org.secpod.oval:def:89047097 This update for glibc fixes the following issues: - CVE-2021-33574: Fixed use __pthread_attr_copy in mq_notify . - CVE-2021-35942: Fixed wordexp handle overflow in positional parameter number . oval:org.secpod.oval:def:1505734 [2.17-325.0.3.ksplice1] - Latest Ksplice-aware release. [2.17-325.0.3] - OraBug 33968985 Security Patches This release fixes CVE-2022-23219, CVE-2022-23218, and CVE-2021-3999 Reviewed-by: Jose E. Marchesi oval:org.secpod.oval:def:3300455 SUSE Security Update: Security update for glibc oval:org.secpod.oval:def:89047552 This update for glibc fixes the following issues: - CVE-2021-3999: Fixed incorrect errno in getcwd - CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for 'unix' - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create Features added: - IBM Power 10 string operation improvements oval:org.secpod.oval:def:4500054 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. For more details about the security issue, includi ... oval:org.secpod.oval:def:89046013 glibc was updated to fix the following issues: Security issues fixed: - CVE-2021-3999: Fixed incorrect errno in getcwd - CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for unix - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create Bugs fixed: - Make endian-conversion macro ... oval:org.secpod.oval:def:1701957 In librt in the GNU C Library through 2.34, sysdeps/unix/sysv/linux/mq_notify.c mishandles certain NOTIFY_REMOVED data, leading to a NULL pointer dereference. NOTE: this vulnerability was introduced as a side effect of the CVE-2021-33574 fix oval:org.secpod.oval:def:89048095 This update for glibc fixes the following issues: - CVE-2016-10739: getaddrinfo: Fully parse IPv4 address strings oval:org.secpod.oval:def:89049753 This update for glibc fixes the following security issues: - CVE-2017-18269: An SSE2-optimized memmove implementation for i386 did not correctly perform the overlapping memory check if the source memory range spaned the middle of the address space, resulting in corrupt data being produced by the cop ... oval:org.secpod.oval:def:96785 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:89050945 This update for glibc fixes the following issues: Security issue fixed: * CVE-2023-4813: Fixed a potential use-after-free in gaih_inet Other changes: * Added GB18030-2022 charmap * Run vismain only if linker supports protected data symbol oval:org.secpod.oval:def:708651 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:89050978 This update for glibc fixes the following issues: Security issue fixed: * CVE-2023-4813: Fixed a potential use-after-free in gaih_inet Also a regression from a previous update was fixed: * elf: Align argument of __munmap to page size oval:org.secpod.oval:def:97541 [CLSA-2021:1629395067] Fixed CVEs in glibc: CVE-2021-35942, CVE-2021-33574, CVE-2021-38604 oval:org.secpod.oval:def:97557 [CLSA-2021:1632262065] Update of glibc oval:org.secpod.oval:def:97600 [CLSA-2022:1643818516] Fixed CVEs in glibc: CVE-2022-23218, CVE-2022-23219 oval:org.secpod.oval:def:97613 [CLSA-2022:1648138117] Fixed CVE-2021-3999 in glibc oval:org.secpod.oval:def:708693 glibc: GNU C Library Details: USN-6541-1 fixed vulnerabilities in the GNU C Library. Unfortunately, changes made to allow proper application of the fix for CVE-2023-4806 in Ubuntu 22.04 LTS introduced an issue in the NSCD service IPv6 processing functionalities. This update fixes the problem. We apo ... oval:org.secpod.oval:def:4501487 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: buffer overflow in ld.so le ... oval:org.secpod.oval:def:1507043 [2.34-60.0.3] - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi < jose.marchesi at oracle.com > oval:org.secpod.oval:def:1507046 [2.28-225.0.4] - CVE-2023-4911: tunables: Terminate immediately if end of input is reached Reviewed by: Jose E. Marchesi < jose.marchesi at oracle.com > oval:org.secpod.oval:def:94962 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:95220 The Qualys Research Labs discovered a buffer overflow in the dynamic loader"s processing of the GLIBC_TUNABLES environment variable. An attacker can exploit this flaw for privilege escalation. Details can be found in the Qualys advisory at https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunab ... oval:org.secpod.oval:def:96502 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:19500493 A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash oval:org.secpod.oval:def:98654 glibc: GNU C Library Details: USN-6541-1 fixed vulnerabilities in the GNU C Library. Unfortunately, changes made to allow proper application of the fix for CVE-2023-4806 in Linux Mint 21.x LTS introduced an issue in the NSCD service IPv6 processing functionalities. This update fixes the problem. We ... oval:org.secpod.oval:def:708741 glibc: GNU C Library GNU C Library could be made to crash or run programs as an administrator if it handled a specially crafted request. oval:org.secpod.oval:def:97878 The Qualys Research Labs discovered several vulnerabilities in the GNU C Library"s __vsyslog_internal function . A heap-based buffer overflow , an off-by-one heap overflow and an integer overflow can be exploited for privilege escalation or denial of service. Details can be found in the Qualys adv ... oval:org.secpod.oval:def:89000229 This update for glibc fixes the following issues: - CVE-2020-1752: Fixed a use after free in glob which could have allowed a local attacker to create a specially crafted path that, when processed by the glob function, could potentially have led to arbitrary code execution . - CVE-2020-1751: Fixed an ... oval:org.secpod.oval:def:89000491 This update for glibc fixes the following issues: - CVE-2020-1752: Fixed a use after free in glob which could have allowed a local attacker to create a specially crafted path that, when processed by the glob function, could potentially have led to arbitrary code execution . oval:org.secpod.oval:def:89002980 This update for glibc fixes the following issues: - CVE-2020-10029: Fixed a stack corruption from range reduction of pseudo-zero - Use posix_spawn on popen - Correct locking and cancellation cleanup in syslog functions - Fixed concurrent changes on nscd aware files oval:org.secpod.oval:def:3302471 Security update for glibc oval:org.secpod.oval:def:89051654 This update for glibc fixes the following issues: Security issues fixed: * qsort: harden handling of degenerated / non transient compare function Other issues fixed: * getaddrinfo: translate ENOMEM to EAI_MEMORY * aarch64: correct CFI in rawmemchr oval:org.secpod.oval:def:89046907 This update for glibc fixes the following issues: Security issues fixed: - CVE-2015-5180: Fix crash with internal QTYPE in resolv - CVE-2016-10228: Rewrite iconv option parsing - CVE-2019-25013: Fix buffer overrun in EUC-KR conversion module - CVE-2020-27618: Accept redundant shift sequences in I ... oval:org.secpod.oval:def:97583 [CLSA-2021:1637583639] Fixed CVEs in glibc: CVE-2021-3326, CVE-2021-43396 oval:org.secpod.oval:def:89048648 This update for glibc fixes the following issues: Security issues fixed: * CVE-2020-29573: x86: printf was hardened against non-normal long double values * CVE-2021-3326: Fix assertion failure in gconv ISO-2022-JP-3 module * CVE-2019-25013: Fix buffer overrun in EUC-KR conversion module * CVE-202 ... oval:org.secpod.oval:def:1504976 [2.28-151.0.1.el8_4] - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list - add optimized memset for emag - add an ASIMD v ... oval:org.secpod.oval:def:1504933 [2.28-151.0.1.el8_4] - merge RH patches for ol8-u4 release Review-exception: Patch merge - Provide glibc.pthread.mutex_spin_count tunable for pthread adaptive - spin mutex Orabug: 27982358. Reviewed-by: Qing Zhao - add Ampere emag to tunable cpu list - add optimized memset for emag - add an ASIMD v ... oval:org.secpod.oval:def:4501339 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: buffer over-read in iconv w ... oval:org.secpod.oval:def:89051598 This update for glibc fixes the following issues: Security issues fixed: * CVE-2020-29573: x86: printf was hardened against non-normal long double values * CVE-2021-3326: Fix assertion failure in gconv ISO-2022-JP-3 module * CVE-2019-25013: Fix buffer overrun in EUC-KR conversion module * CVE-202 ... oval:org.secpod.oval:def:73579 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: buffer over-read in iconv w ... oval:org.secpod.oval:def:2500260 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. oval:org.secpod.oval:def:205836 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: * glibc: buffer over-read in iconv w ... oval:org.secpod.oval:def:89048613 This update for glibc fixes the following issues: Security issue fixed: * CVE-2023-0687: Fix allocated buffer overflow in gmon Other issues fixed: * Fix avx2 strncmp offset compare condition check * elf: Allow dlopen of filter object to work * powerpc: Fix unrecognized instruction errors with rec ... oval:org.secpod.oval:def:2501389 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. oval:org.secpod.oval:def:1601902 The iconv function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable oval:org.secpod.oval:def:89051795 This update for glibc fixes the following issues: * iconv: ISO-2022-CN-EXT: fix out-of-bound writes when writing escape sequence oval:org.secpod.oval:def:10000578 Charles Fol discovered that the iconv function in the GNU C library is prone to a buffer overflow vulnerability when converting strings to the ISO-2022-CN-EXT character set, which may lead to denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:509316 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fix: glibc: Out of bounds write in iconv ... oval:org.secpod.oval:def:613069 Charles Fol discovered that the iconv function in the GNU C library is prone to a buffer overflow vulnerability when converting strings to the ISO-2022-CN-EXT character set, which may lead to denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:2501422 The glibc packages provide the standard C libraries , POSIX thread libraries , standard math libraries , and the name service cache daemon used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. oval:org.secpod.oval:def:613074 Several vulnerabilities were discovered in nscd, the Name Service Cache Daemon in the GNU C library which may lead to denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:10000582 Several vulnerabilities were discovered in nscd, the Name Service Cache Daemon in the GNU C library which may lead to denial of service or the execution of arbitrary code. oval:org.secpod.oval:def:3302519 Security update for glibc oval:org.secpod.oval:def:3302542 Security update for glibc oval:org.secpod.oval:def:708974 glibc: GNU C Library Several security issues were fixed in GNU C Library. oval:org.secpod.oval:def:89051893 This update for glibc fixes the following issues: * nscd: Fixed use-after-free in addgetnetgrentX * CVE-2024-33599: nscd: Fixed Stack-based buffer overflow in netgroup cache * CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response * CVE-2024-33600: nscd: Do not send missing not- ... oval:org.secpod.oval:def:89051902 This update for glibc fixes the following issues: * CVE-2024-2961: iconv: ISO-2022-CN-EXT: fix out-of-bound writes when writing escape sequence oval:org.secpod.oval:def:89051938 This update for glibc fixes the following issues: * CVE-2024-33599: Fixed a stack-based buffer overflow in netgroup cache in nscd * CVE-2024-33600: Avoid null pointer crashes after notfound response in nscd * CVE-2024-33600: Do not send missing not-found response in addgetnetgrentX in nscd * CVE- ... oval:org.secpod.oval:def:89051957 This update for glibc fixes the following issues: * nscd: Release read lock after resetting timeout * nscd: Fix use-after-free in addgetnetgrentX * CVE-2024-33599; nscd: Stack-based buffer overflow in netgroup cache * CVE-2024-33600; nscd: Avoid null pointer crashes after notfound response * CVE- ... oval:org.secpod.oval:def:1507570 [2.17-326.3] - Forward-port Oracle patches to 2.17-326.3 Reviewed-by: Jose E. Marchesi [2.17-326.3] - nscd: Fix timeout type in netgroup cache [2.17-326.2] - nscd: Do not use sendfile for the netgroup cache - nscd: Use-after-free in netgroup cache - CVE-2021-27645: nscd: double-free in netgroup cac ... |