Описание
ELSA-2015-2172: glibc security update (IMPORTANT)
[2.17-106.0.1.1]
- Remove strstr and strcasestr implementations using sse4.2 instructions.
- Upstream commits 584b18eb4df61ccd447db2dfe8c8a7901f8c8598 and 1818483b15d22016b0eae41d37ee91cc87b37510 backported.
[2.17-106.1]
- Rebuild with corrected release.
[2.17-106]
- Add fix for CVE-2015-5277 (#1275920).
Обновленные пакеты
Oracle Linux 7
Oracle Linux x86_64
glibc
2.17-106.0.1.el7_2.1
glibc-common
2.17-106.0.1.el7_2.1
glibc-devel
2.17-106.0.1.el7_2.1
glibc-headers
2.17-106.0.1.el7_2.1
glibc-static
2.17-106.0.1.el7_2.1
glibc-utils
2.17-106.0.1.el7_2.1
nscd
2.17-106.0.1.el7_2.1
Связанные CVE
Связанные уязвимости
The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.
The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.
The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.
The get_contents function in nss_files/files-XXX.c in the Name Service ...
The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.