Oval Definition:oval:org.mitre.oval:def:12941
Revision Date:2014-06-30Version:20
Title:USN-944-1 -- glibc, eglibc vulnerabilities
Description:Maksymilian Arciemowicz discovered that the GNU C library did not correctly handle integer overflows in the strfmon function. If a user or automated system were tricked into processing a specially crafted format string, a remote attacker could crash applications, leading to a denial of service. Jeff Layton and Dan Rosenberg discovered that the GNU C library did not correctly handle newlines in the mntent family of functions. If a local attacker were able to inject newlines into a mount entry through other vulnerable mount helpers, they could disrupt the system or possibly gain root privileges. Dan Rosenberg discovered that the GNU C library did not correctly validate certain ELF program headers. If a user or automated system were tricked into verifying a specially crafted ELF program, a remote attacker could execute arbitrary code with user privileges
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2008-1391
CVE-2010-0296
CVE-2010-0830
USN-944-1
USN-944-1
Platform(s):Ubuntu 10.04
Ubuntu 6.06
Ubuntu 8.04
Ubuntu 9.04
Ubuntu 9.10
Product(s):eglibc
glibc
Definition Synopsis
  • Release section
  • Ubuntu 8.04 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • glibc-doc DPKG is earlier than 2.7-10ubuntu6
  • OR glibc-source DPKG is earlier than 2.7-10ubuntu6
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is powerpc
  • OR Installed architecture is amd64
  • OR Installed architecture is lpia
  • OR Installed architecture is i386
  • AND Packages section
  • libnss-files-udeb DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-prof DPKG is earlier than 2.7-10ubuntu6
  • OR libc6 DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-dev DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-pic DPKG is earlier than 2.7-10ubuntu6
  • OR libnss-dns-udeb DPKG is earlier than 2.7-10ubuntu6
  • OR nscd DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-dbg DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-udeb DPKG is earlier than 2.7-10ubuntu6
  • OR Architecture depended section
  • Installed architecture is i386
  • AND Packages section
  • libc6-amd64 DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-dev-amd64 DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-i686 DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-xen DPKG is earlier than 2.7-10ubuntu6
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • libc6-dev-ppc64 DPKG is earlier than 2.7-10ubuntu6
  • OR libc6-ppc64 DPKG is earlier than 2.7-10ubuntu6
  • OR Release section
  • Ubuntu 10.04 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • glibc-doc DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR eglibc-source DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR Architecture depended section
  • Installed architecture is sparc
  • AND Packages section
  • libc-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-files-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev-sparc64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparc64v DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparcv9b DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR nscd DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparcv9v2 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparc64b DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparc64v2 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-pic DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc-dev-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dbg DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-prof DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparc64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-sparcv9v DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-dns-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR Architecture depended section
  • Installed architecture is i386
  • AND Packages section
  • libc-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-files-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR nscd DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-dns-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-amd64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-pic DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc-dev-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dbg DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-prof DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev-amd64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-i686 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-xen DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • libc-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-files-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libnss-dns-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR nscd DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-pic DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dev-ppc64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc-dev-bin DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-ppc64 DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-prof DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-dbg DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR libc6-udeb DPKG is earlier than 2.11.1-0ubuntu7.1
  • OR Release section
  • Ubuntu 9.10 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • glibc-doc DPKG is earlier than 2.10.1-0ubuntu17
  • OR eglibc-source DPKG is earlier than 2.10.1-0ubuntu17
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is lpia
  • AND Packages section
  • libc-bin DPKG is earlier than 2.10.1-0ubuntu17
  • OR libnss-files-udeb DPKG is earlier than 2.10.1-0ubuntu17
  • OR nscd DPKG is earlier than 2.10.1-0ubuntu17
  • OR libnss-dns-udeb DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-dev DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-pic DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc-dev-bin DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-prof DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-dbg DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-udeb DPKG is earlier than 2.10.1-0ubuntu17
  • OR Architecture depended section
  • Installed architecture is sparc
  • AND Packages section
  • libc6-dev-sparc64 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparc64v DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparcv9b DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparcv9v2 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparc64b DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparc64v2 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparc64 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-sparcv9v DPKG is earlier than 2.10.1-0ubuntu17
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • libc6-dev-ppc64 DPKG is earlier than 2.10.1-0ubuntu17
  • OR libc6-ppc64 DPKG is earlier than 2.10.1-0ubuntu17
  • OR Release section
  • Ubuntu 6.06 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • zoneinfo-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR glibc-doc DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR Architecture depended section
  • Installed architecture is sparc
  • AND Packages section
  • libnss-files-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-dev-sparc64 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-sparc64v DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-sparcv9b DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR nscd DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-sparc64b DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-dev DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-sparcv9v DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-pic DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-dbg DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-prof DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-sparc64 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libnss-dns-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is i386
  • OR Installed architecture is amd64
  • OR Installed architecture is powerpc
  • AND Packages section
  • libnss-files-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR nscd DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-dev DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-pic DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libnss-dns-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-prof DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-dbg DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-udeb DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • libc6-dev-ppc64 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR libc6-ppc64 DPKG is earlier than 2.3.6-0ubuntu20.6
  • OR Release section
  • Ubuntu 9.04 is installed
  • AND Architecture section
  • Architecture independet section
  • Installed architecture is all
  • AND Packages section
  • glibc-doc DPKG is earlier than 2.9-4ubuntu6.2
  • OR glibc-source DPKG is earlier than 2.9-4ubuntu6.2
  • OR Architecture depended section
  • Supported architectures section
  • Installed architecture is amd64
  • OR Installed architecture is i386
  • OR Installed architecture is powerpc
  • OR Installed architecture is sparc
  • OR Installed architecture is lpia
  • AND Packages section
  • libnss-files-udeb DPKG is earlier than 2.9-4ubuntu6.2
  • OR nscd DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-dev DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-pic DPKG is earlier than 2.9-4ubuntu6.2
  • OR libnss-dns-udeb DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-prof DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-dbg DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-udeb DPKG is earlier than 2.9-4ubuntu6.2
  • OR Architecture depended section
  • Installed architecture is sparc
  • AND Packages section
  • libc6-dev-sparc64 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparc64v DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparcv9b DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparcv9v2 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparc64b DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparc64v2 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparc64 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-sparcv9v DPKG is earlier than 2.9-4ubuntu6.2
  • OR Supported platform section
  • Installed architecture is powerpc
  • AND Packages section
  • libc6-dev-ppc64 DPKG is earlier than 2.9-4ubuntu6.2
  • OR libc6-ppc64 DPKG is earlier than 2.9-4ubuntu6.2
    • BACK