Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2018:0494-1

Опубликовано: 20 фев. 2018
Источник: suse-cvrf

Описание

Security update for glibc

This update for glibc fixes the following issues:

Security issues fixed:

  • CVE-2017-8804: Fix memory leak after deserialization failure in xdr_bytes, xdr_string (bsc#1037930)
  • CVE-2017-12132: Reduce EDNS payload size to 1200 bytes (bsc#1051791)
  • CVE-2018-6485,CVE-2018-6551: Fix integer overflows in internal memalign and malloc functions (bsc#1079036)
  • CVE-2018-1000001: Avoid underflow of malloced area (bsc#1074293)

Non security bugs fixed:

  • Release read lock after resetting timeout (bsc#1073990)

This update was imported from the SUSE:SLE-12-SP2:Update update project.

Список пакетов

openSUSE Leap 42.3
glibc-2.22-13.2
glibc-32bit-2.22-13.2
glibc-devel-2.22-13.2
glibc-devel-32bit-2.22-13.2
glibc-devel-static-2.22-13.2
glibc-devel-static-32bit-2.22-13.2
glibc-extra-2.22-13.2
glibc-html-2.22-13.2
glibc-i18ndata-2.22-13.2
glibc-info-2.22-13.2
glibc-locale-2.22-13.2
glibc-locale-32bit-2.22-13.2
glibc-obsolete-2.22-13.2
glibc-profile-2.22-13.2
glibc-profile-32bit-2.22-13.2
glibc-testsuite-2.22-13.2
glibc-utils-2.22-13.2
glibc-utils-32bit-2.22-13.2
nscd-2.22-13.2

Ссылки

Описание

The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path DNS spoofing attacks due to IP fragmentation.

Затронутые продукты
openSUSE Leap 42.3:glibc-2.22-13.2
openSUSE Leap 42.3:glibc-32bit-2.22-13.2
openSUSE Leap 42.3:glibc-devel-2.22-13.2
openSUSE Leap 42.3:glibc-devel-32bit-2.22-13.2
Ссылки

Описание

** DISPUTED ** The xdr_bytes and xdr_string functions in the GNU C Library (aka glibc or libc6) 2.25 mishandle failures of buffer deserialization, which allows remote attackers to cause a denial of service (virtual memory allocation, or memory consumption if an overcommit setting is not used) via a crafted UDP packet to port 111, a related issue to CVE-2017-8779. NOTE: [Information provided from upstream and references]

Затронутые продукты
openSUSE Leap 42.3:glibc-2.22-13.2
openSUSE Leap 42.3:glibc-32bit-2.22-13.2
openSUSE Leap 42.3:glibc-devel-2.22-13.2
openSUSE Leap 42.3:glibc-devel-32bit-2.22-13.2
Ссылки

Описание

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.

Затронутые продукты
openSUSE Leap 42.3:glibc-2.22-13.2
openSUSE Leap 42.3:glibc-32bit-2.22-13.2
openSUSE Leap 42.3:glibc-devel-2.22-13.2
openSUSE Leap 42.3:glibc-devel-32bit-2.22-13.2
Ссылки

Описание

An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too small, potentially leading to heap corruption.

Затронутые продукты
openSUSE Leap 42.3:glibc-2.22-13.2
openSUSE Leap 42.3:glibc-32bit-2.22-13.2
openSUSE Leap 42.3:glibc-devel-2.22-13.2
openSUSE Leap 42.3:glibc-devel-32bit-2.22-13.2
Ссылки

Описание

The malloc implementation in the GNU C Library (aka glibc or libc6), from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZE_MAX and could return a pointer to a heap region that is smaller than requested, eventually leading to heap corruption.

Затронутые продукты
openSUSE Leap 42.3:glibc-2.22-13.2
openSUSE Leap 42.3:glibc-32bit-2.22-13.2
openSUSE Leap 42.3:glibc-devel-2.22-13.2
openSUSE Leap 42.3:glibc-devel-32bit-2.22-13.2
Ссылки