Oval Definition:oval:org.mitre.oval:def:26877
Revision Date:2014-11-10Version:4
Title:SUSE-SU-2014:1119-1 -- Security update for glibc
Description:This glibc update fixes a critical privilege escalation problem and thefollowing security and non security issues: * bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit thattargets the problem is publicly available. (CVE-2014-5119) * bnc#772242: Replace scope handing with master state * bnc#779320: Fix buffer overflow in strcoll (CVE-2012-4412) * bnc#818630: Fall back to localhost if no nameserver defined * bnc#828235: Fix missing character in IBM-943 charset * bnc#828637: Fix use of alloca in gaih_inet * bnc#834594: Fix readdir_r with long file names (CVE-2013-4237)Security Issues: * CVE-2014-5119 * CVE-2013-4237 * CVE-2012-4412
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2012-4412
CVE-2013-4237
CVE-2014-5119
SUSE-SU-2014:1119-1
Platform(s):SUSE Linux Enterprise Server 10
Product(s):glibc
Definition Synopsis
  • SUSE Linux Enterprise Server 10 is installed
  • AND Packages match section
  • glibc RPM is earlier than 0:2.4-31.111.1
  • OR glibc-devel RPM is earlier than 0:2.4-31.111.1
  • OR glibc-html RPM is earlier than 0:2.4-31.111.1
  • OR glibc-i18ndata RPM is earlier than 0:2.4-31.111.1
  • OR glibc-info RPM is earlier than 0:2.4-31.111.1
  • OR glibc-locale RPM is earlier than 0:2.4-31.111.1
  • OR glibc-profile RPM is earlier than 0:2.4-31.111.1
  • OR nscd RPM is earlier than 0:2.4-31.111.1
  • OR glibc-32bit RPM is earlier than 0:2.4-31.111.1
  • OR glibc-devel-32bit RPM is earlier than 0:2.4-31.111.1
  • OR glibc-locale-32bit RPM is earlier than 0:2.4-31.111.1
  • OR glibc-profile-32bit RPM is earlier than 0:2.4-31.111.1
  • BACK