CVE-2014-0475

Description

Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.

CVSS Metrics

• v2.0•MEDIUM•Score: 6.8AV:N/AC:M/Au:N/C:P/I:P/A:P

EPSS Trends

Current EPSS score: 0.78%• Percentile: 74%

Techniques & Countermeasures

• CWE-22•Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

  The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Affected Systems

• gnu•glibc

  ≤ 2.19 | 2.0 | 2.0.1 | 2.0.2 | 2.0.3 | 2.0.4 | 2.0.5 | 2.0.6 | 2.1 | 2.11 | 2.1.1.6 | 2.12 | 2.13 | 2.19 | 2.10.1 | 2.11.1 | 2.11.2 | 2.11.3 | 2.12.1 | 2.12.2 | 2.14 | 2.14.1 | 2.15 | 2.16 | 2.17 | 2.18

References (10)

• http://www.debian.org/security/2014/dsa-2976
• http://www.securityfocus.com/bid/68505
• http://www.securitytracker.com/id/1030569
• https://rhn.redhat.com/errata/RHSA-2014-1110.html
• http://www.openwall.com/lists/oss-security/2014/07/14/6
• https://security.gentoo.org/glsa/201602-02
• https://sourceware.org/bugzilla/show_bug.cgi?id=17137
• http://www.openwall.com/lists/oss-security/2014/07/10/7
• http://www.mandriva.com/security/advisories?name=MDVSA-2014:152
• http://linux.oracle.com/errata/ELSA-2015-0092.html