Alerts This Week
Warning Icon 1 697
Alerts This Week
Warning Icon 1 697

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -2 articles for you...
197
Ls Advisories Deblts Esm H240
Price Tag 1security advisorybuffer overflowcritical

Debian LTS DLA-3850-1 Critical: glibc nscd Buffer Overflow and More

Multiple vulnerabilities have been fixed in the Name Service Cache Daemon that is built by the GNU C library and shipped in the nscd binary package. CVE-2024-33599 . - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3850-1 This email address is being protected from spambots. You need JavaScript enabled to view it. https://www.debian.org/lts/security/ Adrian Bunk June 30, 2024 https://wiki.debian.org/LTS - ------------------------------------------------------------------------- Package : glibc Version : 2.28-10+deb10u4 CVE ID : CVE-2024-33599 CVE-2024-33600 CVE-2024-33601 CVE-2024-33602 Multiple vulnerabilities have been fixed in the Name Service Cache Daemon that is built by the GNU C library and shipped in the nscd binary package. CVE-2024-33599 nscd: Stack-based buffer overflow in netgroup cache CVE-2024-33600 nscd: Null pointer crashes after notfound response CVE-2024-33601 nscd: Daemon may terminate on memory allocation failure CVE-2024-33602 nscd: Possible memory corruption For Debian 10 buster, these problems have been fixed in version 2.28-10+deb10u4. We recommend that you upgrade your glibc packages. For the detailed security status of glibc please refer to its security tracker page at: https://security-tracker.debian.org/tracker/source-package/glibc Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS . Debian security announcement DLA-3850-1 outlines vital glibc patches aimed at mitigating several vulnerabilities and urging users to apply updates.. Debian LTS, glibc updates, nscd security, memory allocation issues, buffer overflow. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Jun 30, 2024 Critical Debian LTS
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorybuffer overflowcritical update

SUSE: 2024:1895-1 Critical Update: glibc Buffer Overflow Issues

* bsc#1221940 * bsc#1223423 * bsc#1223424 * bsc#1223425 . # Security update for glibc Announcement ID: SUSE-SU-2024:1895-1 Rating: important References: * bsc#1221940 * bsc#1223423 * bsc#1223424 * bsc#1223425 Cross-References: * CVE-2024-33599 * CVE-2024-33600 * CVE-2024-33601 * CVE-2024-33602 CVSS scores: * CVE-2024-33599 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-33600 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33601 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33602 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP5 * Development Tools Module 15-SP5 * openSUSE Leap 15.3 * openSUSE Leap 15.5 * openSUSE Leap Micro 5.3 * openSUSE Leap Micro 5.4 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Micro for Rancher 5.3 * SUSE Linux Enterprise Micro for Rancher 5.4 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Linux Enterprise Server for SAPApplications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 An update that solves four vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues: * CVE-2024-33599: Fixed a stack-based buffer overflow in netgroup cache in nscd (bsc#1223423) * CVE-2024-33600: Avoid null pointer crashes after notfound response in nscd (bsc#1223424) * CVE-2024-33600: Do not send missing not-found response in addgetnetgrentX in nscd (bsc#1223424) * CVE-2024-33601, CVE-2024-33602: Fixed use of two buffers in addgetnetgrentX ( bsc#1223425) * CVE-2024-33602: Use time_t for return type of addgetnetgrentX (bsc#1223425) * Avoid creating userspace live patching prologue for _start routine (bsc#1221940) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2024-1895=1 * openSUSE Leap Micro 5.3 zypper in -t patch openSUSE-Leap-Micro-5.3-2024-1895=1 * openSUSE Leap Micro 5.4 zypper in -t patch openSUSE-Leap-Micro-5.4-2024-1895=1 * openSUSE Leap 15.5 zypper in -t patch openSUSE-SLE-15.5-2024-1895=1 * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-1895=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2024-1895=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-1895=1 * SUSE Linux Enterprise Micro 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2024-1895=1 * SUSE Linux Enterprise Micro 5.5 zypper in -t patch SUSE-SLE-Micro-5.5-2024-1895=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1895=1 * Development Tools Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP5-2024-1895=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2024-1895=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-ESPOS-2024-1895=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 zypper in -t patch SUSE-SLE-Product-HPC-15-SP4-LTSS-2024-1895=1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLED-15-SP4-LTSS-2024-1895=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2024-1895=1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 zypper in -t patch SUSE-SLE-Product-SLES-15-SP4-LTSS-2024-1895=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2024-1895=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP4-2024-1895=1 * SUSE Manager Proxy 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-2024-1895=1 * SUSE Manager Retail Branch Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.3-2024-1895=1 * SUSE Manager Server 4.3 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.3-2024-1895=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2024-1895=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2024-1895=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1895=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2024-1895=1 ## Package List: * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586 i686) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 *glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 i586) * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * openSUSE Leap 15.3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-html-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * openSUSE Leap 15.3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-utils-32bit-debuginfo-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-utils-32bit-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * glibc-devel-static-32bit-2.31-150300.83.1 * glibc-profile-32bit-2.31-150300.83.1 * openSUSE Leap 15.3 (aarch64_ilp32) * glibc-profile-64bit-2.31-150300.83.1 * glibc-64bit-debuginfo-2.31-150300.83.1 * glibc-utils-64bit-2.31-150300.83.1 * glibc-64bit-2.31-150300.83.1 * glibc-locale-base-64bit-debuginfo-2.31-150300.83.1 * glibc-devel-64bit-debuginfo-2.31-150300.83.1 * glibc-locale-base-64bit-2.31-150300.83.1 * glibc-utils-64bit-debuginfo-2.31-150300.83.1 * glibc-devel-static-64bit-2.31-150300.83.1 * glibc-devel-64bit-2.31-150300.83.1 * openSUSE Leap Micro 5.3 (aarch64 x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 *glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * openSUSE Leap Micro 5.4 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * openSUSE Leap 15.5 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-utils-32bit-debuginfo-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-utils-32bit-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * glibc-devel-static-32bit-2.31-150300.83.1 * glibc-profile-32bit-2.31-150300.83.1 * openSUSE Leap 15.5 (noarch) * glibc-info-2.31-150300.83.1 * glibc-html-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Micro for Rancher 5.3 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 *glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro 5.3 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro for Rancher 5.4 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro 5.4 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro 5.5 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 *glibc-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * Basesystem Module 15-SP5 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * Basesystem Module 15-SP5 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * Development Tools Module 15-SP5 (aarch64 ppc64le s390x x86_64) * glibc-debugsource-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * Development Tools Module 15-SP5 (x86_64) * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 *glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (aarch64 x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP4 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (aarch64 x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 *nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP4 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (x86_64) * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * SUSE Linux Enterprise Desktop 15 SP4 LTSS 15-SP4 (noarch) * glibc-info-2.31-150300.83.1 *glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (aarch64 ppc64le s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 *glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Server 15 SP4 LTSS 15-SP4 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (ppc64le x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 *glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Manager Proxy 4.3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Manager Proxy 4.3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Manager Retail Branch Server 4.3 (x86_64) *glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Manager Retail Branch Server 4.3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Manager Server 4.3 (ppc64le s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Manager Server 4.3 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Manager Server 4.3 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-devel-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-extra-2.31-150300.83.1 * glibc-extra-debuginfo-2.31-150300.83.1 *glibc-utils-src-debugsource-2.31-150300.83.1 * nscd-debuginfo-2.31-150300.83.1 * glibc-utils-2.31-150300.83.1 * nscd-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-devel-static-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-utils-debuginfo-2.31-150300.83.1 * glibc-profile-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Enterprise Storage 7.1 (noarch) * glibc-info-2.31-150300.83.1 * glibc-lang-2.31-150300.83.1 * glibc-i18ndata-2.31-150300.83.1 * SUSE Enterprise Storage 7.1 (x86_64) * glibc-locale-base-32bit-2.31-150300.83.1 * glibc-locale-base-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-debuginfo-2.31-150300.83.1 * glibc-32bit-2.31-150300.83.1 * glibc-devel-32bit-2.31-150300.83.1 * glibc-devel-32bit-debuginfo-2.31-150300.83.1 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * glibc-locale-base-debuginfo-2.31-150300.83.1 * glibc-debugsource-2.31-150300.83.1 * glibc-devel-2.31-150300.83.1 * glibc-2.31-150300.83.1 * glibc-locale-base-2.31-150300.83.1 * glibc-debuginfo-2.31-150300.83.1 * glibc-locale-2.31-150300.83.1 ## References: * https://www.suse.com/security/cve/CVE-2024-33599.html *https://www.suse.com/security/cve/CVE-2024-33600.html * https://www.suse.com/security/cve/CVE-2024-33601.html * https://www.suse.com/security/cve/CVE-2024-33602.html * https://bugzilla.suse.com/show_bug.cgi?id=1221940 * https://bugzilla.suse.com/show_bug.cgi?id=1223423 * https://bugzilla.suse.com/show_bug.cgi?id=1223424 * https://bugzilla.suse.com/show_bug.cgi?id=1223425 . Apply essential updates for glibc to mitigate buffer overflow vulnerabilities and address pointer access issues. Ensure system security with SUSE's latest patches.. glibc Update, SUSE Security, Software Patches, Linux Systems, Security Advisory. . Severity: Important. LinuxSecurity.com Team

Calendar 2 Jun 03, 2024 Important SuSE
Banner 4 1028x280 1708121825 1771600306
172
Ls Advisories Ubuntu Esm H240
Price Tag 1security advisorycriticalDoS

Ubuntu 24.04 LTS USN-6804-1 Critical: glibc nscd DoS Attack

Several security issues were fixed in GNU C Library.. ========================================================================== Ubuntu Security Notice USN-6804-1 May 31, 2024 glibc vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 24.04 LTS - Ubuntu 23.10 - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: Several security issues were fixed in GNU C Library. Software Description: - glibc: GNU C Library Details: It was discovered that GNU C Library nscd daemon contained a stack-based buffer overflow. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-33599) It was discovered that GNU C Library nscd daemon did not properly check the cache content, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-33600) It was discovered that GNU C Library nscd daemon did not properly validate memory allocation in certain situations, leading to a null pointer dereference vulnerability. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-33601) It was discovered that GNU C Library nscd daemon did not properly handle memory allocation, which could lead to memory corruption. A local attacker could use this to cause a denial of service (system crash). (CVE-2024-33602) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 24.04 LTS nscd 2.39-0ubuntu8.2 Ubuntu 23.10 nscd 2.38-1ubuntu6.3 Ubuntu 22.04 LTS nscd 2.35-0ubuntu3.8 Ubuntu 20.04 LTS nscd 2.31-0ubuntu9.16 Ubuntu 18.04 LTS nscd 2.27-3ubuntu1.6+esm3 Available with Ubuntu Pro Ubuntu 16.04 LTS nscd 2.23-0ubuntu11.3+esm7 Available with Ubuntu Pro After a standard system update you need to restart nscd to make all the necessary changes. References: https://ubuntu.com/security/notices/USN-6804-1 CVE-2024-33599, CVE-2024-33600, CVE-2024-33601, CVE-2024-33602 Package Information: https://launchpad.net/ubuntu/+source/glibc/2.39-0ubuntu8.2 https://launchpad.net/ubuntu/+source/glibc/2.38-1ubuntu6.3 https://launchpad.net/ubuntu/+source/glibc/2.35-0ubuntu3.8 https://launchpad.net/ubuntu/+source/glibc/2.31-0ubuntu9.16 . Several glibc security flaws identified in Ubuntu, encompassing denial of service risks and necessary patches.. glibc Vulnerabilities, Ubuntu Security Update, Denial of Service, nscd Fixes. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 31, 2024 Critical Ubuntu
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorybuffer overflowglibc

SUSE Linux: 2024:1675-1 Important: Glibc Buffer Overflow and More

* bsc#1222992 * bsc#1223423 * bsc#1223424 * bsc#1223425 . # Security update for glibc Announcement ID: SUSE-SU-2024:1675-1 Rating: important References: * bsc#1222992 * bsc#1223423 * bsc#1223424 * bsc#1223425 Cross-References: * CVE-2024-2961 * CVE-2024-33599 * CVE-2024-33600 * CVE-2024-33601 * CVE-2024-33602 CVSS scores: * CVE-2024-2961 ( SUSE ): 8.2 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H * CVE-2024-33599 ( SUSE ): 7.6 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H * CVE-2024-33600 ( SUSE ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33601 ( SUSE ): 6.2 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H * CVE-2024-33602 ( SUSE ): 4.0 CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * SUSE Linux Enterprise High Performance Computing 12 SP5 * SUSE Linux Enterprise Server 12 SP5 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 * SUSE Linux Enterprise Software Development Kit 12 SP5 An update that solves five vulnerabilities can now be installed. ## Description: This update for glibc fixes the following issues: * nscd: Fixed use-after-free in addgetnetgrentX (BZ #23520) * CVE-2024-33599: nscd: Fixed Stack-based buffer overflow in netgroup cache (bsc#1223423, BZ #31677) * CVE-2024-33600: nscd: Avoid null pointer crashes after notfound response (bsc#1223424, BZ #31678) * CVE-2024-33600: nscd: Do not send missing not-found response in addgetnetgrentX (bsc#1223424, BZ #31678) * CVE-2024-33602: netgroup: Use two buffers in addgetnetgrentX (CVE-2024-33601, bsc#1223425, BZ #31680) * CVE-2024-33602; Use time_t for return type of addgetnetgrentX (bsc#1223425) * CVE-2024-2961: iconv: ISO-2022-CN-EXT: Fixed out-of-bound writes when writing escape sequence (bsc#1222992) ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: *SUSE Linux Enterprise Software Development Kit 12 SP5 zypper in -t patch SUSE-SLE-SDK-12-SP5-2024-1675=1 * SUSE Linux Enterprise High Performance Computing 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1675=1 * SUSE Linux Enterprise Server 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1675=1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 zypper in -t patch SUSE-SLE-SERVER-12-SP5-2024-1675=1 ## Package List: * SUSE Linux Enterprise Software Development Kit 12 SP5 (aarch64 ppc64le s390x x86_64) * glibc-debuginfo-2.22-114.34.1 * glibc-debugsource-2.22-114.34.1 * glibc-devel-static-2.22-114.34.1 * SUSE Linux Enterprise Software Development Kit 12 SP5 (noarch) * glibc-info-2.22-114.34.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (aarch64 x86_64) * glibc-devel-2.22-114.34.1 * glibc-locale-debuginfo-2.22-114.34.1 * glibc-2.22-114.34.1 * glibc-profile-2.22-114.34.1 * glibc-debuginfo-2.22-114.34.1 * glibc-debugsource-2.22-114.34.1 * nscd-debuginfo-2.22-114.34.1 * nscd-2.22-114.34.1 * glibc-devel-debuginfo-2.22-114.34.1 * glibc-locale-2.22-114.34.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (noarch) * glibc-i18ndata-2.22-114.34.1 * glibc-info-2.22-114.34.1 * glibc-html-2.22-114.34.1 * SUSE Linux Enterprise High Performance Computing 12 SP5 (x86_64) * glibc-locale-debuginfo-32bit-2.22-114.34.1 * glibc-devel-32bit-2.22-114.34.1 * glibc-profile-32bit-2.22-114.34.1 * glibc-devel-debuginfo-32bit-2.22-114.34.1 * glibc-debuginfo-32bit-2.22-114.34.1 * glibc-locale-32bit-2.22-114.34.1 * glibc-32bit-2.22-114.34.1 * SUSE Linux Enterprise Server 12 SP5 (aarch64 ppc64le s390x x86_64) * glibc-devel-2.22-114.34.1 * glibc-locale-debuginfo-2.22-114.34.1 * glibc-2.22-114.34.1 * glibc-profile-2.22-114.34.1 * glibc-debuginfo-2.22-114.34.1 * glibc-debugsource-2.22-114.34.1 * nscd-debuginfo-2.22-114.34.1 *nscd-2.22-114.34.1 * glibc-devel-debuginfo-2.22-114.34.1 * glibc-locale-2.22-114.34.1 * SUSE Linux Enterprise Server 12 SP5 (noarch) * glibc-i18ndata-2.22-114.34.1 * glibc-info-2.22-114.34.1 * glibc-html-2.22-114.34.1 * SUSE Linux Enterprise Server 12 SP5 (s390x x86_64) * glibc-locale-debuginfo-32bit-2.22-114.34.1 * glibc-devel-32bit-2.22-114.34.1 * glibc-profile-32bit-2.22-114.34.1 * glibc-devel-debuginfo-32bit-2.22-114.34.1 * glibc-debuginfo-32bit-2.22-114.34.1 * glibc-locale-32bit-2.22-114.34.1 * glibc-32bit-2.22-114.34.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (ppc64le x86_64) * glibc-devel-2.22-114.34.1 * glibc-locale-debuginfo-2.22-114.34.1 * glibc-2.22-114.34.1 * glibc-profile-2.22-114.34.1 * glibc-debuginfo-2.22-114.34.1 * glibc-debugsource-2.22-114.34.1 * nscd-debuginfo-2.22-114.34.1 * nscd-2.22-114.34.1 * glibc-devel-debuginfo-2.22-114.34.1 * glibc-locale-2.22-114.34.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (noarch) * glibc-i18ndata-2.22-114.34.1 * glibc-info-2.22-114.34.1 * glibc-html-2.22-114.34.1 * SUSE Linux Enterprise Server for SAP Applications 12 SP5 (x86_64) * glibc-locale-debuginfo-32bit-2.22-114.34.1 * glibc-devel-32bit-2.22-114.34.1 * glibc-profile-32bit-2.22-114.34.1 * glibc-devel-debuginfo-32bit-2.22-114.34.1 * glibc-debuginfo-32bit-2.22-114.34.1 * glibc-locale-32bit-2.22-114.34.1 * glibc-32bit-2.22-114.34.1 ## References: * https://www.suse.com/security/cve/CVE-2024-2961.html * https://www.suse.com/security/cve/CVE-2024-33599.html * https://www.suse.com/security/cve/CVE-2024-33600.html * https://www.suse.com/security/cve/CVE-2024-33601.html * https://www.suse.com/security/cve/CVE-2024-33602.html * https://bugzilla.suse.com/show_bug.cgi?id=1222992 * https://bugzilla.suse.com/show_bug.cgi?id=1223423 * https://bugzilla.suse.com/show_bug.cgi?id=1223424 *https://bugzilla.suse.com/show_bug.cgi?id=1223425 . SUSE Linux has issued a Security Update for glibc to tackle severe concerns and improve defense mechanisms against security flaws.. Glibc Update, SUSE Advisory, Security Issues, Linux Security. . Severity: Important. LinuxSecurity.com Team

Calendar 2 May 17, 2024 Important SuSE
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisorycriticalFedora

Fedora 34: 2021:3fc0188b3a Severe Memory Corruption in glibc NSS Cache

This glibc update contains a fix for a double-free in the nscd netgroup cache, and improves debugging information by: * not removing debugging information from ld.so * adjusting to changes in rpm in order to keep stripping debugging information from binaries * removing a conflict between contents of 32 and 64 bit debuginfo packages so they can remain installed simultaneously on a system. --------------------------------------------------------------------------------Fedora Update Notification FEDORA-2021-2ba993d6c5 2021-05-22 01:07:28.002865 --------------------------------------------------------------------------------Name : glibc Product : Fedora 33 Version : 2.32 Release : 6.fc33 URL : https://www.gnu.org/software/libc/ Summary : The GNU libc libraries Description : The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important sets of shared libraries: the standard C library and the standard math library. Without these two libraries, a Linux system will not function. --------------------------------------------------------------------------------Update Information: This glibc update contains a fix for a double-free in the nscd netgroup cache, and improves debugging information by: * not removing debugging information from ld.so * adjusting to changes in rpm in order to keep stripping debugging information from binaries * removing a conflict between contents of 32 and 64 bit debuginfo packages so they can remain installed simultaneously on a system --------------------------------------------------------------------------------ChangeLog: * Wed May 19 2021 Arjun Shankar - 2.32-6 - Use distribution mechanism for debuginfo (#1661510, #1886295, #1905611) * Tue May 18 2021 Arjun Shankar - 2.32-5 - Auto-sync withupstream branch release/2.32/master, commit 1799ac8eabe87acd7b1ef7c3a483171489563482: - support: Typo and formatting fixes - support: Pass environ to child process - Fix SXID_ERASE behavior in setuid programs (BZ #27471) - Enhance setuid-tunables test - tst-env-setuid: Use support_capture_subprogram_self_sgid - support: Add capability to fork an sgid child - S390: Also check vector support in memmove ifunc-selector [BZ #27511] - powerpc64: Workaround sigtramp vdso return call - nscd: Fix double free in netgroupcache [BZ #27462] --------------------------------------------------------------------------------References: [ 1 ] Bug #1661510 - glibc: Adjust to rpm's find-debuginfo.sh changes, to keep stripping binaries [Fedora] https://bugzilla.redhat.com/show_bug.cgi?id=1661510 [ 2 ] Bug #1886295 - glibc: ldconfig debuginfo file conflict between i686 and x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=1886295 [ 3 ] Bug #1905611 - glibc: Do not remove debugging information from ld.so https://bugzilla.redhat.com/show_bug.cgi?id=1905611 [ 4 ] Bug #1932590 - CVE-2021-27645 glibc: Use-after-free in addgetnetgrentX function in netgroupcache.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1932590 --------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2021-2ba993d6c5' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ --------------------------------------------------------------------------------_______________________________________________ package-announce mailing list -- This email address is being protected from spambots. You need JavaScript enabled to view it. To unsubscribe send an email This email address is being protected from spambots. You need JavaScript enabled to view it. Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/This email address is being protected from spambots. You need JavaScript enabled to view it./ Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure . This patch resolves an important memory leak vulnerability in OpenSSL and improves performance metrics for Ubuntu 20.04 users.. Fedora Update, Glibc Double-Free, Debugging Improvements. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 May 21, 2021 Critical Fedora
203
Ls Advisories Mageia Esm H240
Price Tag 1security advisorydenial of servicecritical

Mageia 8: 2021-0138 Critical: Glibc Denial Of Service Threat

Updated glibc packages fix a security vulnerability: The nameserver caching daemon (nscd), when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system (CVE-2021-27645). . MGASA-2021-0138 - Updated glibc packages fix a security vulnerability Publication date: 17 Mar 2021 URL: https://advisories.mageia.org/MGASA-2021-0138.html Type: security Affected Mageia releases: 8 CVE: CVE-2021-27645 Updated glibc packages fix a security vulnerability: The nameserver caching daemon (nscd), when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system (CVE-2021-27645). References: - https://bugs.mageia.org/show_bug.cgi?id=28587 - https://www.cve.org/CVERecord?id=CVE-2021-27645 SRPMS: - 8/core/glibc-2.32-15.mga8 . Recently released glibc updates for Mageia tackle significant risks of service interruptions on local machines caused by a vulnerability.. Glibc Update, Mageia Security, Denial of Service, Nscd Vulnerability, March 2021 Advisory. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Mar 17, 2021 Critical Mageia
Banner 4 1028x280 1708121825 1771600306
89
Ls Advisories Fedora Esm H240
Price Tag 1security advisoryfedoracritical

Fedora Core 3: FEDORA-2004-542 Critical Update for SELinux

Fix problems with winbind, nscd, apache and others.. ---------------------------------------------------------------------Fedora Update Notification FEDORA-2004-541 2004-12-16 ---------------------------------------------------------------------Product : Fedora Core 3 Name : selinux-policy-targeted Version : 1.17.30 Release : 2.51 Summary : SELinux targeted policy configuration Description : Security-enhanced Linux is a patch of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. This package contains the SELinux example policy configuration along with the Flask configuration information and the application configuration files. ---------------------------------------------------------------------Update Information: Fix problems with winbind, nscd, apache and others. ---------------------------------------------------------------------* Fri Dec 10 2004 Dan Walsh 1.17.30-2.51 - Add random_device_t to nscd * Fri Dec 10 2004 Dan Walsh 1.17.30-2.48 - Add winbind support for nscd and netlink_sockets for all * Wed Dec 08 2004 Dan Walsh 1.17.30-2.46 - Rebuild with patch including php ls /var/www/html fix. * Wed Dec 08 2004 Dan Walsh 1.17.30-2.44 - Add urandom for nscd/ldap support - Add minor fix for editing mailman - Add syslog to xconsole fix * Fri Dec 03 2004 Dan Walsh 1.17.30-2.42 - Fix squirrelmail attachements - Fix policy sources post install * Fri Dec 03 2004 Dan Walsh 1.17.30-2.41 - Allow httpd scripts execute of sbin_t * Fri Dec 03 2004Dan Walsh 1.17.30-2.40 - Update file context to handle IBM platforms ---------------------------------------------------------------------This update can be downloaded from: 45d9c5299c9cee00b99b6dbe512b3a2a SRPMS/selinux-policy-targeted-1.17.30-2.51.src.rpm fb9a6bda7746c725cd5570756e82cf66 x86_64/selinux-policy-targeted-1.17.30-2.51.noarch.rpm 384dc9b9909aa49610d0c4dbb67fbcdf x86_64/selinux-policy-targeted-sources-1.17.30-2.51.noarch.rpm fb9a6bda7746c725cd5570756e82cf66 i386/selinux-policy-targeted-1.17.30-2.51.noarch.rpm 384dc9b9909aa49610d0c4dbb67fbcdf i386/selinux-policy-targeted-sources-1.17.30-2.51.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. -----------------------------------------------------------------------fedora-announce-list mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . An update to fix issues with winbind, nscd, and apache in Fedora SELinux, enhancing security controls.. Fedora SELinux Update, SELinux Policy Configuration, Security Access Controls. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 16, 2004 Critical Fedora
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":547,"type":"x","order":1,"pct":78.48,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.3,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.88,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.34,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here