Описание
Security update for glibc
This update for glibc fixes the following issue:
-
CVE-2025-0395: Fix underallocation of abort_msg_s struct (bsc#1236282, BZ #32582))
-
s390x-wcsncmp patch: s390x: Fix segfault in wcsncmp (bsc#1228044).
Список пакетов
Container suse/ltss/sle12.5/sles12sp5:latest
glibc-2.22-114.40.1
Image SLES12-SP5-EC2-BYOS
glibc-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
Image SLES12-SP5-EC2-On-Demand
glibc-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
Image SLES12-SP5-EC2-SAP-BYOS
glibc-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
Image SLES12-SP5-EC2-SAP-On-Demand
glibc-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
Image SLES12-SP5-SAP-Azure-LI-BYOS-Production
glibc-2.22-114.40.1
glibc-32bit-2.22-114.40.1
glibc-devel-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production
glibc-2.22-114.40.1
glibc-32bit-2.22-114.40.1
glibc-devel-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-locale-2.22-114.40.1
nscd-2.22-114.40.1
SUSE Linux Enterprise Server 12 SP5-LTSS
glibc-2.22-114.40.1
glibc-32bit-2.22-114.40.1
glibc-devel-2.22-114.40.1
glibc-devel-32bit-2.22-114.40.1
glibc-devel-static-2.22-114.40.1
glibc-html-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-info-2.22-114.40.1
glibc-locale-2.22-114.40.1
glibc-locale-32bit-2.22-114.40.1
glibc-profile-2.22-114.40.1
glibc-profile-32bit-2.22-114.40.1
nscd-2.22-114.40.1
SUSE Linux Enterprise Server LTSS Extended Security 12 SP5
glibc-2.22-114.40.1
glibc-32bit-2.22-114.40.1
glibc-devel-2.22-114.40.1
glibc-devel-32bit-2.22-114.40.1
glibc-devel-static-2.22-114.40.1
glibc-html-2.22-114.40.1
glibc-i18ndata-2.22-114.40.1
glibc-info-2.22-114.40.1
glibc-locale-2.22-114.40.1
glibc-locale-32bit-2.22-114.40.1
glibc-profile-2.22-114.40.1
glibc-profile-32bit-2.22-114.40.1
nscd-2.22-114.40.1
Ссылки
- Link for SUSE-SU-2025:0510-1
- E-Mail link for SUSE-SU-2025:0510-1
- SUSE Security Ratings
- SUSE Bug 1228044
- SUSE Bug 1236282
- SUSE CVE CVE-2025-0395 page
Описание
When the assert() function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information, which may lead to a buffer overflow if the message string size aligns to page size.
Затронутые продукты
Container suse/ltss/sle12.5/sles12sp5:latest:glibc-2.22-114.40.1
Image SLES12-SP5-EC2-BYOS:glibc-2.22-114.40.1
Image SLES12-SP5-EC2-BYOS:glibc-i18ndata-2.22-114.40.1
Image SLES12-SP5-EC2-BYOS:glibc-locale-2.22-114.40.1
Ссылки
- CVE-2025-0395
- SUSE Bug 1236282