Oval Definition:oval:org.mitre.oval:def:26789
Revision Date:2014-11-10Version:4
Title:SUSE-SU-2014:1125-1 -- Security update for glibc
Description:This glibc update fixes a critical privilege escalation problem and twonon-security issues: * bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit thattargets the problem is publicly available. (CVE-2014-5119) * bnc#892065: setenv-alloca.patch: Avoid unbound alloca in setenv. * bnc#888347: printf-multibyte-format.patch: Don't parse %s format argument as multi-byte string.Security Issues: * CVE-2014-5119
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2014-5119
SUSE-SU-2014:1125-1
Platform(s):SUSE Linux Enterprise Desktop 11
SUSE Linux Enterprise Server 11
Product(s):glibc
Definition Synopsis
  • SUSE Linux Enterprise Server 11 and SUSE Linux Enterprise Desktop 11 release section
  • Operation system section
  • SUSE Linux Enterprise Server 11.x is installed
  • OR SUSE Linux Enterprise Desktop 11.x is installed
  • AND Packages match section
  • glibc RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-devel RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-i18ndata RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-locale RPM is earlier than 0:2.11.3-17.72.14
  • OR nscd RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-32bit RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-devel-32bit RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-locale-32bit RPM is earlier than 0:2.11.3-17.72.14
  • SUSE Linux Enterprise Server 11 release section
  • SUSE Linux Enterprise Server 11.x is installed
  • AND Packages match section
  • glibc-html RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-info RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-profile RPM is earlier than 0:2.11.3-17.72.14
  • OR glibc-profile-32bit RPM is earlier than 0:2.11.3-17.72.14
    • BACK