|
|
Subscribe / Log in / New account

glibc: multiple vulnerabilities

Package(s):glibc CVE #(s):CVE-2012-6656 CVE-2014-6040
Created:September 5, 2014 Updated:March 6, 2015
Description:

From the Madriva advisory:

When converting IBM930 code with iconv(), if IBM930 code which includes invalid multibyte character 0xffff is specified, then iconv() segfaults (CVE-2012-6656).

Crashes were reported in the IBM code page decoding functions (IBM933, IBM935, IBM937, IBM939, IBM1364) (CVE-2014-6040).

Alerts:
Gentoo 201602-02 glibc 2016-02-17
Mandriva MDVSA-2015:168 glibc 2015-03-30
Scientific Linux SLSA-2015:0327-2 glibc 2015-03-25
Oracle ELSA-2015-0327 glibc 2015-03-09
Fedora FEDORA-2015-2845 glibc 2015-03-04
Debian DSA-3142-1 eglibc 2015-01-27
Gentoo 201503-04 glibc 2015-03-08
Red Hat RHSA-2015:0327-01 glibc 2015-03-05
Scientific Linux SLSA-2015:0016-1 glibc 2015-01-07
Oracle ELSA-2015-0016 glibc 2015-01-07
CentOS CESA-2015:0016 glibc 2015-01-07
Red Hat RHSA-2015:0016-01 glibc 2015-01-07
Ubuntu USN-2432-1 eglibc, glibc 2014-12-03
SUSE SUSE-SU-2014:1129-1 glibc 2014-09-15
SUSE SUSE-SU-2014:1128-1 glibc 2014-09-15
Mageia MGASA-2014-0376 glibc 2014-09-15
openSUSE openSUSE-SU-2014:1115-1 glibc 2014-09-11
Mandriva MDVSA-2014:175 glibc 2014-09-05
to post comments


Copyright © 2025, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds