GLSA
Advocate
Joined: 12 May 2004
Posts: 2663
|
 Posted: Wed Apr 04, 2018 4:26 am Post subject: [ GLSA 201804-02 ] glibc |
 |
|
Gentoo Linux Security Advisory
Title: glibc: Multiple vulnerabilities (GLSA 201804-02)
Severity: normal
Exploitable: local, remote
Date: 2018-04-04
Bug(s): #632556, #634920, #635118, #641644, #644278, #646490, #646492
ID: 201804-02
Synopsis
Multiple vulnerabilities have been found in glibc, the worst of
which could allow remote attackers to execute arbitrary code.
Background
glibc is a package that contains the GNU C library.
Affected Packages
Package: sys-libs/glibc
Vulnerable: < 2.25-r11
Unaffected: >= 2.25-r11
Architectures: All supported architectures
Description
Multiple vulnerabilities have been discovered in glibc. Please review
the CVE identifiers referenced below for details.
Impact
An attacker could possibly execute arbitrary code, escalate privileges,
cause a Denial of Service condition, or have other unspecified impacts.
Workaround
There is no known workaround at this time.
Resolution
All glibc users should upgrade to the latest version: | Code: | # emerge --sync
# emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.25-r11"
|
References
CVE-2017-14062
CVE-2017-15670
CVE-2017-15671
CVE-2017-15804
CVE-2017-16997
CVE-2018-1000001
CVE-2018-6485
CVE-2018-6551 |
|
News & Announcements
