CVE-2014-8121 - DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or l

CVE-2014-8121

Summary

DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up on a database while iterating over it, which triggers the file pointer to be reset.

References

Vulnerable Configurations

cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:-:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:-:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:-:*:*:*:*:*:x64:*
cpe:2.3:a:gnu:glibc:-:*:*:*:*:*:x64:*
cpe:2.3:a:gnu:glibc:0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.4.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:0.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.00:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.00:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.01:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.01:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.02:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.02:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.03:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.03:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.04:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.04:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.05:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.05:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.06.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.07.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.14:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.08.14:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:1.09.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.3.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.3.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.1.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.2.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.3.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.4:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.5:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.5.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.6:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.6.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.7:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.8:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.9:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.10.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.11.3:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.12:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.12.2:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.13:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.14:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.14:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.14.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.14.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.15:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.15:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.16:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.16:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.17:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.17:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.17:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.17:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.18:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.18:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.18:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.18:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.19:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.19:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.20:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.20:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.20:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.20:*:*:*:*:*:x86:*
cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:*
cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

CVSS

Base:	5.0 (as of 13-02-2023 - 00:43)
Impact:
Exploitability:

CWE

CWE-17

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

redhat via4

advisories

bugzilla

id	1165192
title	CVE-2014-8121 glibc: Unexpected closing of nss_files databases after lookups causes denial of service

oval

comment Red Hat Enterprise Linux must be installed
oval oval:com.redhat.rhba:tst:20070304026

AND

comment Red Hat Enterprise Linux 7 is installed
oval oval:com.redhat.rhba:tst:20150364027

AND
comment glibc is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327001
comment glibc is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763002
AND
comment glibc-common is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327003
comment glibc-common is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763004
AND
comment glibc-devel is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327005
comment glibc-devel is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763006
AND
comment glibc-headers is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327007
comment glibc-headers is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763008
AND
comment glibc-static is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327009
comment glibc-static is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763010
AND
comment glibc-utils is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327011
comment glibc-utils is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763012
AND
comment nscd is earlier than 0:2.17-78.el7
oval oval:com.redhat.rhsa:tst:20150327013
comment nscd is signed with Red Hat redhatrelease2 key
oval oval:com.redhat.rhba:tst:20120763014

rhsa

id	RHSA-2015:0327
released	2015-03-05
severity	Moderate
title	RHSA-2015:0327: glibc security and bug fix update (Moderate)

rpms

glibc-0:2.17-78.el7
glibc-common-0:2.17-78.el7
glibc-debuginfo-0:2.17-78.el7
glibc-debuginfo-common-0:2.17-78.el7
glibc-devel-0:2.17-78.el7
glibc-headers-0:2.17-78.el7
glibc-static-0:2.17-78.el7
glibc-utils-0:2.17-78.el7
nscd-0:2.17-78.el7

refmap via4

bid	73038
confirm	https://bugzilla.redhat.com/show_bug.cgi?id=1165192
debian	DSA-3480
gentoo	GLSA-201602-02
mlist	[libc-alpha] 20150223 [PATCH] CVE-2014-8121: Fix nss_files file management [BZ#18007]
suse	SUSE-SU-2015:1424 SUSE-SU-2016:0470
ubuntu	USN-2985-1 USN-2985-2

Last major update

13-02-2023 - 00:43

Published

27-03-2015 - 14:59

Last modified

13-02-2023 - 00:43