| Errata ID | 400 |
|---|---|
| Date | 2016-02-17 |
| Source package | eglibc |
| Fixed in version | 2.13-38.28.201602161808 |
| Description | The following security issues have been fixed in eglibc: * Denial of service in nss_files (CVE-2014-8121) * buffer overflow in gethostbyname_r and related functions (CVE-2015-1781) * getaddrinfo stack-based buffer overflow (CVE-2015-7547) * Segmentation fault when passing out-of-range data to strftime() (CVE-2015-8776) * LD_POINTER_GUARD not ignored for SUID programs, enabling an unintended bypass of a security feature (CVE-2015-8777) * Integer overflow in hcreate and hcreate_r (CVE-2015-8778) * Multiple unbounded stack allocations in catopen() (CVE-2015-8779) |
| Additional notes | |
| CVE ID | CVE-2014-8121 CVE-2015-1781 CVE-2015-7547 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 |
| UCS Bug number | #38407 |
