Several security issues were fixed in the GNU C Library ...
USN-2985-1 introduced a regression in the GNU C Library ...
Debian Bug report logs -
#796105
CVE-2015-1781
Package:
src:glibc;
Maintainer for src:glibc is GNU Libc Maintainers <debian-glibc@listsdebianorg>;
Reported by: Moritz Muehlenhoff <jmm@debianorg>
Date: Wed, 19 Aug 2015 14:03:01 UTC
Severity: important
Tags: security
Fixed in versions glibc/221-0experimental1, gli ...
Debian Bug report logs -
#689423
eglibc: CVE-2012-4424: stack overflow in strcoll()
Package:
eglibc;
Maintainer for eglibc is (unknown);
Reported by: Moritz Muehlenhoff <jmm@inutilorg>
Date: Tue, 2 Oct 2012 13:12:01 UTC
Severity: important
Tags: patch, security
Found in versions eglibc/2113-4, eglibc/217-93
Fixed in ...
Debian Bug report logs -
#719558
eglibc: CVE-2013-4237
Package:
eglibc;
Maintainer for eglibc is (unknown);
Reported by: Moritz Muehlenhoff <jmm@inutilorg>
Date: Tue, 13 Aug 2013 05:15:02 UTC
Severity: important
Tags: security
Found in versions eglibc/2113-4, eglibc/217-93
Fixed in versions eglibc/217-94, eglibc/213 ...
Debian Bug report logs -
#727181
eglibc: CVE-2013-4458: Stack (frame) overflow in getaddrinfo() when called with AF_INET6
Package:
eglibc;
Maintainer for eglibc is (unknown);
Reported by: Salvatore Bonaccorso <carnil@debianorg>
Date: Wed, 23 Oct 2013 04:54:01 UTC
Severity: important
Tags: security, upstream
Fixed in vers ...
Debian Bug report logs -
#687530
eglibc: CVE-2012-4412: strcoll integer / buffer overflow
Package:
eglibc;
Maintainer for eglibc is (unknown);
Reported by: Moritz Muehlenhoff <jmm@inutilorg>
Date: Thu, 13 Sep 2012 14:21:01 UTC
Severity: important
Tags: patch, security
Found in versions eglibc/2113-4, eglibc/217-93
Fix ...
Debian Bug report logs -
#798316
libc6: Pointer guarding bypass in dynamic Setuid binaries
Package:
libc6;
Maintainer for libc6 is GNU Libc Maintainers <debian-glibc@listsdebianorg>; Source for libc6 is src:glibc (PTS, buildd, popcon)
Reported by: Hideki Yamane <henrich@debianorjp>
Date: Tue, 8 Sep 2015 01:24:02 ...
Debian Bug report logs -
#717544
CVE-2013-2207: Remove pt_chown
Package:
libc-bin;
Maintainer for libc-bin is GNU Libc Maintainers <debian-glibc@listsdebianorg>; Source for libc-bin is src:glibc (PTS, buildd, popcon)
Reported by: Moritz Muehlenhoff <jmm@inutilorg>
Date: Mon, 22 Jul 2013 06:39:02 UTC
Severity: imp ...
pt_chown in GNU C Library (aka glibc or libc6) before 218 does not properly check permissions for tty files, which allows local users to change the permission on the files and obtain access to arbitrary pseudo-terminals by leveraging a FUSE file system ...