Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2013-0769

Опубликовано: 24 апр. 2013
Источник: oracle-oval
Платформа: Oracle Linux 5

Описание

ELSA-2013-0769: glibc security and bug fix update (LOW)

[2.5-107.4]

  • Add missing patch to avoid use after free (#816647).

[2.5-107.3]

  • Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130)
    • Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)

[2.5-107.2]

  • Call feraiseexcept only if exceptions are not masked (#861871).

Обновленные пакеты

Oracle Linux 5

Oracle Linux ia64

glibc

2.5-107.el5_9.4

glibc-common

2.5-107.el5_9.4

glibc-devel

2.5-107.el5_9.4

glibc-headers

2.5-107.el5_9.4

glibc-utils

2.5-107.el5_9.4

nscd

2.5-107.el5_9.4

Oracle Linux x86_64

glibc

2.5-107.el5_9.4

glibc-common

2.5-107.el5_9.4

glibc-devel

2.5-107.el5_9.4

glibc-headers

2.5-107.el5_9.4

glibc-utils

2.5-107.el5_9.4

nscd

2.5-107.el5_9.4

Oracle Linux i386

glibc

2.5-107.el5_9.4

glibc-common

2.5-107.el5_9.4

glibc-devel

2.5-107.el5_9.4

glibc-headers

2.5-107.el5_9.4

glibc-utils

2.5-107.el5_9.4

nscd

2.5-107.el5_9.4

Связанные CVE

CVE-2013-0242
CVE-2013-1914

Ссылки на источники

Связанные уязвимости

oracle-oval логотип

ELSA-2013-1605

oracle-oval
больше 11 лет назад

ELSA-2013-1605: glibc security, bug fix, and enhancement update (MODERATE)

ubuntu логотип

CVE-2013-1914

ubuntu
больше 12 лет назад

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of domain conversion results.

redhat логотип

CVE-2013-1914

redhat
больше 12 лет назад

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of domain conversion results.

nvd логотип

CVE-2013-1914

nvd
больше 12 лет назад

Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of domain conversion results.

debian логотип

CVE-2013-1914

debian
больше 12 лет назад

Stack-based buffer overflow in the getaddrinfo function in sysdeps/pos ...