Oval Definition:oval:org.mitre.oval:def:25924
Revision Date:2014-11-10Version:4
Title:SUSE-SU-2014:1129-1 -- Security update for glibc
Description:This glibc update fixes a critical privilege escalation problem and twoadditional issues: * bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit thattargets the problem is publicly available. (CVE-2014-5119) * bnc#836746: Avoid race between {, __de}allocate_stack and __reclaim_stacks during fork. * bnc#844309: Fixed various overflows, reading large /etc/hosts or long names. (CVE-2013-4357) * bnc#894553, bnc#894556: Fixed various crashes on invalid input in IBM gconv modules. (CVE-2014-6040, CVE-2012-6656)Security Issues: * CVE-2012-6656 * CVE-2013-4357 * CVE-2014-5119 * CVE-2014-6040
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2012-6656
CVE-2013-4357
CVE-2014-5119
CVE-2014-6040
SUSE-SU-2014:1129-1
Platform(s):SUSE Linux Enterprise Server 11
Product(s):glibc
Definition Synopsis
  • SUSE Linux Enterprise Server 11.x is installed
  • AND Packages match section
  • glibc RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-devel RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-html RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-i18ndata RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-info RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-locale RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-profile RPM is earlier than 0:2.11.3-17.45.53.1
  • OR nscd RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-32bit RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-devel-32bit RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-locale-32bit RPM is earlier than 0:2.11.3-17.45.53.1
  • OR glibc-profile-32bit RPM is earlier than 0:2.11.3-17.45.53.1
    • BACK