SUSE-SU-2018:2883-1 -- SLES glibcID: oval:org.secpod.oval:def:89043727 | Date: (C)2021-03-05 (M)2023-02-20 |
Class: PATCH | Family: unix |
This update for glibc fixes the following security issues: - CVE-2017-15670: Prevent off-by-one error that lead to a heap-based buffer overflow in the glob function, related to the processing of home directories using the ~ operator followed by a long string - CVE-2017-15804: The glob function contained a buffer overflow during unescaping of user names with the ~ operator - CVE-2015-5180: res_query in libresolv allowed remote attackers to cause a denial of service . This non-security issue was fixed: - Fix inaccuracies in casin, cacos, casinh, cacosh
Platform: |
SUSE Linux Enterprise Server 11 SP4 |