- Home
- CVEs with nessus.description==This update for glibc fixes the following security issues :
CVE-2017-15670: Prevent off-by-one error that lead to a heap-based
buffer overflow in the glob function, related to the processing of
home directories using the ~ operator followed by a long string
(bsc#1064583)
CVE-2017-15804: The glob function contained a buffer overflow during
unescaping of user names with the ~ operator (bsc#1064580)
CVE-2015-5180: res_query in libresolv allowed remote attackers to
cause a denial of service (NULL pointer dereference and process crash)
(bsc#941234).
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.
Max CVSS | 0 |
Min CVSS | 0 |
Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published |
Back to Top
Mark selected
Back to Top