Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

openSUSE-SU-2021:3291-1

Опубликовано: 08 дек. 2021
Источник: suse-cvrf

Описание

Security update for glibc

This update for glibc fixes the following issues:

  • CVE-2021-33574: Fixed use __pthread_attr_copy in mq_notify (bsc#1186489).
  • CVE-2021-35942: Fixed wordexp handle overflow in positional parameter number (bsc#1187911).

Список пакетов

openSUSE Leap 15.3
glibc-2.31-9.3.2
glibc-32bit-2.31-9.3.2
glibc-devel-2.31-9.3.2
glibc-devel-32bit-2.31-9.3.2
glibc-devel-static-2.31-9.3.2
glibc-devel-static-32bit-2.31-9.3.2
glibc-extra-2.31-9.3.2
glibc-html-2.31-9.3.2
glibc-i18ndata-2.31-9.3.2
glibc-info-2.31-9.3.2
glibc-lang-2.31-9.3.2
glibc-locale-2.31-9.3.2
glibc-locale-base-2.31-9.3.2
glibc-locale-base-32bit-2.31-9.3.2
glibc-profile-2.31-9.3.2
glibc-profile-32bit-2.31-9.3.2
glibc-utils-2.31-9.3.2
glibc-utils-32bit-2.31-9.3.2
nscd-2.31-9.3.2

Ссылки

Описание

The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. It may use the notification thread attributes object (passed through its struct sigevent parameter) after it has been freed by the caller, leading to a denial of service (application crash) or possibly unspecified other impact.

Затронутые продукты
openSUSE Leap 15.3:glibc-2.31-9.3.2
openSUSE Leap 15.3:glibc-32bit-2.31-9.3.2
openSUSE Leap 15.3:glibc-devel-2.31-9.3.2
openSUSE Leap 15.3:glibc-devel-32bit-2.31-9.3.2
Ссылки

Описание

The wordexp function in the GNU C Library (aka glibc) through 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations.

Затронутые продукты
openSUSE Leap 15.3:glibc-2.31-9.3.2
openSUSE Leap 15.3:glibc-32bit-2.31-9.3.2
openSUSE Leap 15.3:glibc-devel-2.31-9.3.2
openSUSE Leap 15.3:glibc-devel-32bit-2.31-9.3.2
Ссылки