GNU C could be made to execute arbitrary code or cause a crash
if it received a specially crafted input.
Software Description:
- eglibc: GNU C Library
Details:
Jakub Wilk discovered that GNU C incorrectly handled certain memory alignments.
An attacker could possibly use this issue to execute arbitrary code or cause
a crash.
The problem can be corrected by updating your system to the following package versions: Ubuntu 14.04 ESM: libc6 2.19-0ubuntu6.15+esm1 Ubuntu 12.04 ESM: libc6 2.15-0ubuntu10.22 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-4218-1
CVE-2018-6485
Get the latest Linux and open source security news straight to your inbox.