Univention Bugzilla – Bug 38115
eglibc: Multiple issues (3.2)
Last modified: 2015-08-21 13:12:16 CEST
These issues are still open after the release of Bug 37644: Denial of service in nss_files (CVE-2014-8121) The scanf() implementation crashes on some inputs (CVE-2011-5320) (ID only recently assigned) Insecure pseudotty ownership changes in pt_chown (CVE-2013-2207)
Crafted DNS responses might cause application crashes or result in arbitrary code execution due to buffer overflow in nss_dns code used in gethostbyname_r and related functions (CVE-2015-3408)
These have been classified as "Minor issue" by Debian: * Insecure pseudotty ownership changes in pt_chown (CVE-2013-2207) * Denial of service in nss_files (CVE-2014-8121)
* buffer overflow in gethostbyname_r and related functions (CVE-2015-1781)
CVE-2015-3408 from comment 1 is incorrect, instead CVE-2015-1781 is correct and fixed in upstream Debian package version 2.11.3-4+deb6u6. According to the security tracker CVE-2011-5320 has been fixed in 2.11.3-4+deb6u5 already.
Advisory: 2015-08-18-eglibc.yaml
OK: DEBIAN_FRONTEND=noninteractive aptitude install -y '?source-package(eglibc)~i' OK: DEBIAN_FRONTEND=noninteractive aptitude install -y '?source-package(eglibc)?not(?name(udeb))' OK: amd64 i386 OK: zless /usr/share/doc/libc6/changelog.Debian.gz # 2.11.3-4+deb6u6 OK: #comment 0 CVE-2014-8121 minor OK: #comment 0 CVE-2011-5320 debian/patches/any/cvs-vfscanf.diff (Bug #37644 comment 7) OK: #comment 0 CVE-2013-2207 minor: UCS-3.2 uses devpts by default OK: #comment 1 + #comment 4 CVE-2015-1781 FIXED OK: 2015-08-18-eglibc.yaml OK: errata-announce -V 2015-08-18-eglibc.yaml
<http://errata.univention.de/ucs/3.2/353.html>