RHSA-2017:1479

Description

Red Hat Security Advisory: glibc security update

CVSS Metrics

• v3.0•HIGH•Score: 7.4CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Systems

• redhat•glibc

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-common

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-debuginfo

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-debuginfo-common

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-devel

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-headers

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-static

  < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•glibc-utils

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

• redhat•nscd

  < 0:2.5-107.el5_9.9 | < 0:2.5-123.el5_11.4 | < 0:2.12-1.166.el6_7.8 | < 0:2.12-1.47.el6_2.18 | < 0:2.12-1.107.el6_4.10 | < 0:2.12-1.132.el6_5.9 | < 0:2.12-1.149.el6_6.12 | < 0:2.12-1.166.el6_7.8 | < 0:2.17-106.el7_2.9 | < 0:2.17-106.el7_2.9

References (9)

• https://access.redhat.com/errata/RHSA-2017:1479
• https://access.redhat.com/security/updates/classification/#important
• https://access.redhat.com/security/vulnerabilities/stackguard
• https://bugzilla.redhat.com/show_bug.cgi?id=1452543
• https://security.access.redhat.com/data/csaf/v2/advisories/2017/rhsa-2017_1479.json
• https://access.redhat.com/security/cve/CVE-2017-1000366
• https://www.cve.org/CVERecord?id=CVE-2017-1000366
• https://nvd.nist.gov/vuln/detail/CVE-2017-1000366
• https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt