glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent manipulation of stack and heap memory but these issues are not directly exploitable, as such they have not been given a CVE. This affects glibc 2.25 and previous versions.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
redhat enterprise linux server aus 7.6 |
||
redhat enterprise linux server 6.0 |
||
redhat enterprise linux desktop 6.0 |
||
redhat enterprise linux server aus 6.4 |
||
redhat enterprise linux server aus 5.9 |
||
redhat enterprise linux server eus 6.2 |
||
redhat enterprise linux server eus 7.2 |
||
redhat enterprise linux server eus 7.4 |
||
redhat enterprise linux server eus 7.3 |
||
redhat enterprise linux server 7.0 |
||
redhat enterprise linux workstation 7.0 |
||
redhat enterprise linux 6.0 |
||
redhat enterprise linux 7.0 |
||
redhat enterprise linux server aus 6.6 |
||
redhat enterprise linux server eus 6.7 |
||
redhat enterprise linux server 6.6 |
||
redhat enterprise linux server tus 7.3 |
||
redhat enterprise linux server tus 7.6 |
||
redhat enterprise linux server aus 7.3 |
||
redhat enterprise linux server aus 7.4 |
||
redhat enterprise linux server tus 6.6 |
||
redhat enterprise linux server tus 7.2 |
||
redhat enterprise linux server aus 7.2 |
||
redhat enterprise linux server aus 6.5 |
||
redhat enterprise linux server tus 6.5 |
||
redhat enterprise linux server eus 7.6 |
||
redhat enterprise linux server eus 7.5 |
||
redhat enterprise linux desktop 7.0 |
||
redhat enterprise linux workstation 6.0 |
||
redhat enterprise linux server aus 6.2 |
||
redhat enterprise linux 5 |
||
redhat enterprise linux server eus 6.5 |
||
redhat enterprise linux server long life 5.9 |
||
suse linux enterprise server 12 |
||
suse linux enterprise server 10 |
||
suse linux enterprise server for raspberry pi 12 |
||
suse linux enterprise software development kit 11.0 |
||
suse linux enterprise software development kit 12.0 |
||
suse linux enterprise for sap 12 |
||
openstack cloud magnum orchestration 7 |
||
novell suse linux enterprise point of sale 11.0 |
||
novell suse linux enterprise desktop 12.0 |
||
novell suse linux enterprise server 11.0 |
||
suse linux enterprise server 11 |
||
opensuse leap 42.2 |
||
gnu glibc |
||
debian debian linux 9.0 |
||
debian debian linux 8.0 |
||
mcafee web gateway |
Vulmon