Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 439
Alerts This Week
Warning Icon 1 439

Scientific Linux: SLSA-2015:1627-1 Moderate Glibc Remote Code Execution

Scientific Large Esm H446
Moderate: glibc security update
Date: Mon, 17 Aug 2015 17:37:50 +0000
Reply-To: scientific-linux-users@
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Subject: Security ERRATA Moderate: glibc on SL5.x i386/x86_64
MIME-Version: 1.0
Message-ID: <20150817173750.694.8178@slpackages.fnal.gov>

Synopsis: Moderate: glibc security update
Advisory ID: SLSA-2015:1627-1
Issue Date: 2015-08-17
CVE Numbers: CVE-2013-7424
--

An invalid free flaw was found in glibc's getaddrinfo() function when used
with the AI_IDN flag. A remote attacker able to make an application call
this function could use this flaw to execute arbitrary code with the
permissions of the user running the application. Note that this flaw only
affected applications using glibc compiled with libidn support.
(CVE-2013-7424)
--

SL5
 x86_64
 glibc-2.5-123.el5_11.3.i686.rpm
 glibc-2.5-123.el5_11.3.x86_64.rpm
 glibc-common-2.5-123.el5_11.3.x86_64.rpm
 glibc-debuginfo-2.5-123.el5_11.3.i386.rpm
 glibc-debuginfo-2.5-123.el5_11.3.i686.rpm
 glibc-debuginfo-2.5-123.el5_11.3.x86_64.rpm
 glibc-debuginfo-common-2.5-123.el5_11.3.i386.rpm
 glibc-devel-2.5-123.el5_11.3.i386.rpm
 glibc-devel-2.5-123.el5_11.3.x86_64.rpm
 glibc-headers-2.5-123.el5_11.3.x86_64.rpm
 glibc-utils-2.5-123.el5_11.3.x86_64.rpm
 nscd-2.5-123.el5_11.3.x86_64.rpm
 i386
 glibc-2.5-123.el5_11.3.i386.rpm
 glibc-2.5-123.el5_11.3.i686.rpm
 glibc-common-2.5-123.el5_11.3.i386.rpm
 glibc-debuginfo-2.5-123.el5_11.3.i386.rpm
 glibc-debuginfo-2.5-123.el5_11.3.i686.rpm
 glibc-debuginfo-common-2.5-123.el5_11.3.i386.rpm
 glibc-devel-2.5-123.el5_11.3.i386.rpm
 glibc-headers-2.5-123.el5_11.3.i386.rpm
 glibc-utils-2.5-123.el5_11.3.i386.rpm
 nscd-2.5-123.el5_11.3.i386.rpm

- Scientific Linux Development Team