Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2026:1334

Опубликовано: 30 янв. 2026
Источник: rocky
Оценка: Moderate

Описание

Moderate: glibc security update

The glibc packages provide the standard C libraries (libc), POSIX thread libraries (libpthread), standard math libraries (libm), and the name service cache daemon (nscd) used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly.

Security Fix(es):

  • glibc: Integer overflow in memalign leads to heap corruption (CVE-2026-0861)

  • glibc: glibc: Information disclosure via zero-valued network query (CVE-2026-0915)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
glibc-langpack-arx86_6458.el10_1.7glibc-langpack-ar-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-bnx86_6458.el10_1.7glibc-langpack-bn-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-iax86_6458.el10_1.7glibc-langpack-ia-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-ffx86_6458.el10_1.7glibc-langpack-ff-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-filx86_6458.el10_1.7glibc-langpack-fil-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-syrx86_6458.el10_1.7glibc-langpack-syr-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-bhox86_6458.el10_1.7glibc-langpack-bho-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-cax86_6458.el10_1.7glibc-langpack-ca-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-ndsx86_6458.el10_1.7glibc-langpack-nds-2.39-58.el10_1.7.x86_64.rpm
glibc-langpack-nhnx86_6458.el10_1.7glibc-langpack-nhn-2.39-58.el10_1.7.x86_64.rpm

Показывать по

Связанные CVE

CVE-2026-0861
CVE-2026-0915

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2026-50078

oracle-oval
6 дней назад

ELSA-2026-50078: glibc security update (MODERATE)

oracle-oval логотип

ELSA-2026-1334

oracle-oval
8 дней назад

ELSA-2026-1334: glibc security update (MODERATE)

ubuntu логотип

CVE-2026-0915

CVSS3: 7.5
ubuntu
19 дней назад

Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries for a zero-valued network in the GNU C Library version 2.0 to version 2.42 can leak stack contents to the configured DNS resolver.

nvd логотип

CVE-2026-0915

CVSS3: 7.5
nvd
19 дней назад

Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries for a zero-valued network in the GNU C Library version 2.0 to version 2.42 can leak stack contents to the configured DNS resolver.

debian логотип

CVE-2026-0915

CVSS3: 7.5
debian
19 дней назад

Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf ...