Explore top 10 tips to secure your open-source projects now. Read More
×
Several security issues were fixed in GNU C Library.
Software Description:
- glibc: GNU C Library
Details:
Jan Engelhardt, Tavis Ormandy, and others discovered that the GNU C Library
iconv feature incorrectly handled certain input sequences. An attacker
could possibly use this issue to cause the GNU C Library to hang or crash,
resulting in a denial of service. This issue only affected Ubuntu 18.04 LTS
and Ubuntu 20.04 LTS. (CVE-2016-10228, CVE-2019-25013, CVE-2020-27618,
CVE-2020-29562, CVE-2021-3326)
Jason Royes and Samuel Dytrych discovered that the GNU C Library
incorrectly handled signed comparisons on ARMv7 targets. A remote attacker
could use this issue to cause the GNU C Library to crash, resulting in a
denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. (CVE-2020-6096)
It was discovered that the GNU C Library nscd daemon incorrectly handled
certain netgroup lookups. An attacker cou...
The problem can be corrected by updating your system to the following package versions: Ubuntu 21.10: libc6 2.34-0ubuntu3.2 Ubuntu 20.04 LTS: libc6 2.31-0ubuntu9.7 Ubuntu 18.04 LTS: libc6 2.27-3ubuntu1.5 After a standard system update you need to reboot your computer to make all the necessary changes.
https://ubuntu.com/security/notices/USN-5310-1
CVE-2016-10228, CVE-2019-25013, CVE-2020-27618, CVE-2020-29562,
CVE-2020-6096, CVE-2021-27645, CVE-2021-3326, CVE-2021-35942,
CVE-2021-3998, CVE-2021-3999, CVE-2022-23218, CVE-2022-23219
Get the latest Linux and open source security news straight to your inbox.