Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 443
Alerts This Week
Warning Icon 1 443

Fedora 23: 2016-68abc0be35 Critical: Glibc Stack And Memory Issues

fedora
Calendar Grey May 10, 2016
Dist Fedora Esm H88
Fedora 23 kernel patch released, resolving various vulnerabilities and bolstering system security.
This update contains minor security fixes (for CVE-2016-3075, CVE-2016-1234, CVE-2015-8778, CVE-2015-8776, CVE-2014-9761, CVE-2015-8779) and collects fixes for bugs encountered by ...

Summary

The glibc package contains standard libraries which are used by

multiple programs on the system. In order to save disk space and

memory, as well as to make upgrading easier, common system code is

kept in one place and shared between programs. This particular package

contains the most important sets of shared libraries: the standard C

library and the standard math library. Without these two libraries, a

Linux system will not function.

Update Information:

This update contains minor security fixes (for CVE-2016-3075, CVE-2016-1234, CVE-2015-8778, CVE-2015-8776, CVE-2014-9761, CVE-2015-8779) and collects fixes for bugs encountered by Fedora users.

Change Log

References


[ 1 ] Bug #1316972 - glibc: NULL pointer dereference in stub resolver with unconnectable name server addresses https://bugzilla.redhat.com/show_bug.cgi?id=1316972 [ 2 ] Bug #1321861 - glibc: "getent group" listing using nss_db fails when entries are long https://bugzilla.redhat.com/show_bug.cgi?id=1321861 [ 3 ] Bug #1313404 - Test suite failure: elf/tst-audit10 and elf/tst-audit4 https://bugzilla.redhat.com/show_bug.cgi?id=1313404 [ 4 ] Bug #1332914 - glibc: Backport nss_dns hardening patches https://bugzilla.redhat.com/show_bug.cgi?id=1332914 [ 5 ] Bug #1321954 - CVE-2016-3075 glibc: Stack overflow in nss_dns_getnetbyname_r [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1321954 [ 6 ] Bug #1332912 - glibc: nss_hesiod: Heap overflow in get_txt_records https://bugzilla.redhat.com/show_bug.cgi?id=1332912 [ 7 ] Bug #1333940 - glibc: Avoid build failure in TZ tests https://bugzilla.redhat.com/show_bug.cgi?id=...

Read the Full Advisory

Update Instructions

This update can be installed with the "yum" update program. Use su -c 'yum update glibc' at the command line. For more information, refer to "Managing Software with yum", available at .

Severity
critical
Lowest
Low
Medium
High
Critical

Name: glibc
Product: Fedora 23
Version: 2.22
Release: 15.fc23
URL:
Summary: The GNU libc libraries

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.