[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2016:0470-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T20:55:29.923Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":34,"duplicates":35,"related":36,"reserved_at":9,"published_at":47,"modified_at":48,"state":9,"summary":49,"references_raw":51,"kevs":156,"epss":9,"epss_history":157,"metrics":158,"affected":159},"SUSE-SU-2016:0470-1","Security update for glibc\n\n\nThis update for glibc fixes the following issues:\n\n- CVE-2015-7547: A stack-based buffer overflow in getaddrinfo allowed remote attackers to cause a crash or execute arbitrary code via crafted and timed DNS responses (bsc#961721)\n- CVE-2015-8777: Insufficient checking of LD_POINTER_GUARD environment variable allowed local attackers to bypass the pointer guarding protection of the dynamic loader on set-user-ID and set-group-ID programs (bsc#950944)\n- CVE-2015-8776: Out-of-range time values passed to the strftime function may cause it to crash, leading to a denial of service, or potentially disclosure information (bsc#962736)\n- CVE-2015-8778: Integer overflow in hcreate and hcreate_r could have caused an out-of-bound memory access. leading to application crashes or, potentially, arbitrary code execution (bsc#962737)\n- CVE-2014-9761: A stack overflow (unbounded alloca) could have caused applications which process long strings with the nan function to crash or, potentially, execute arbitrary code. (bsc#962738)\n- CVE-2015-8779: A stack overflow (unbounded alloca) in the catopen function could have caused applications which pass long strings to the catopen function to crash or, potentially execute arbitrary code. (bsc#962739)\n- CVE-2013-2207: pt_chown tricked into granting access to another users pseudo-terminal (bsc#830257)\n- CVE-2013-4458: Stack (frame) overflow in getaddrinfo() when called with AF_INET6 (bsc#847227)\n- CVE-2014-8121: denial of service issue in the NSS backends (bsc#918187)\n- bsc#920338: Read past end of pattern in fnmatch\n- CVE-2015-1781: buffer overflow in nss_dns (bsc#927080)\n\nThe following non-security bugs were fixed:\n\n- bnc#892065: SIGSEV tst-setlocale3 in glibc-2.11.3-17.68.1\n- bnc#863499: Memory leak in getaddrinfo when many RRs are returned \n- bsc#892065: Avoid unbound alloca in setenv\n- bsc#945779: Properly reread entry after failure in nss_files getent function\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32],{"_key":15},"CVE-2013-2207",{"_key":17},"CVE-2013-4458",{"_key":19},"CVE-2014-8121",{"_key":21},"CVE-2014-9761",{"_key":23},"CVE-2015-1781",{"_key":25},"CVE-2015-7547",{"_key":27},"CVE-2015-8776",{"_key":29},"CVE-2015-8777",{"_key":31},"CVE-2015-8778",{"_key":33},"CVE-2015-8779",[],[],[37,38,39,40,41,42,43,44,45,46],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},"2016-02-16T15:37:56Z","2026-02-04T03:05:55.904983Z",{"cisa_kev":50,"cisa_ransomware":50,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[52,58,63,67,71,75,79,83,87,91,95,99,103,107,111,115,120,124,128,132,136,140,144,148,152],{"url":53,"sources":54,"tags":56},"https://www.suse.com/support/update/announcement/2016/suse-su-20160470-1/",[55],"osv_suse",[57],"Advisory",{"url":59,"sources":60,"tags":61},"https://bugzilla.suse.com/830257",[55],[62],"REPORT",{"url":64,"sources":65,"tags":66},"https://bugzilla.suse.com/847227",[55],[62],{"url":68,"sources":69,"tags":70},"https://bugzilla.suse.com/863499",[55],[62],{"url":72,"sources":73,"tags":74},"https://bugzilla.suse.com/892065",[55],[62],{"url":76,"sources":77,"tags":78},"https://bugzilla.suse.com/918187",[55],[62],{"url":80,"sources":81,"tags":82},"https://bugzilla.suse.com/920338",[55],[62],{"url":84,"sources":85,"tags":86},"https://bugzilla.suse.com/927080",[55],[62],{"url":88,"sources":89,"tags":90},"https://bugzilla.suse.com/945779",[55],[62],{"url":92,"sources":93,"tags":94},"https://bugzilla.suse.com/950944",[55],[62],{"url":96,"sources":97,"tags":98},"https://bugzilla.suse.com/961721",[55],[62],{"url":100,"sources":101,"tags":102},"https://bugzilla.suse.com/962736",[55],[62],{"url":104,"sources":105,"tags":106},"https://bugzilla.suse.com/962737",[55],[62],{"url":108,"sources":109,"tags":110},"https://bugzilla.suse.com/962738",[55],[62],{"url":112,"sources":113,"tags":114},"https://bugzilla.suse.com/962739",[55],[62],{"url":116,"sources":117,"tags":118},"https://www.suse.com/security/cve/CVE-2013-2207",[55],[119],"WEB",{"url":121,"sources":122,"tags":123},"https://www.suse.com/security/cve/CVE-2013-4458",[55],[119],{"url":125,"sources":126,"tags":127},"https://www.suse.com/security/cve/CVE-2014-8121",[55],[119],{"url":129,"sources":130,"tags":131},"https://www.suse.com/security/cve/CVE-2014-9761",[55],[119],{"url":133,"sources":134,"tags":135},"https://www.suse.com/security/cve/CVE-2015-1781",[55],[119],{"url":137,"sources":138,"tags":139},"https://www.suse.com/security/cve/CVE-2015-7547",[55],[119],{"url":141,"sources":142,"tags":143},"https://www.suse.com/security/cve/CVE-2015-8776",[55],[119],{"url":145,"sources":146,"tags":147},"https://www.suse.com/security/cve/CVE-2015-8777",[55],[119],{"url":149,"sources":150,"tags":151},"https://www.suse.com/security/cve/CVE-2015-8778",[55],[119],{"url":153,"sources":154,"tags":155},"https://www.suse.com/security/cve/CVE-2015-8779",[55],[119],[],[],[],[160],{"ecosystem":161,"name":162,"vendor":163,"product":164,"cpe_part":9,"purl_type":165,"purl_namespace":163,"purl_name":164,"source":9,"versions":166},"SUSE Linux Enterprise","glibc","suse","glibc&distro=SUSE Linux Enterprise Server 11 SP2-LTSS","rpm",[167],{"version":168,"is_range":169,"range_type":170,"version_start":9,"version_start_type":9,"version_end":171,"version_end_type":172,"fixed_in":9},"lt2_11_3_17_45_66_1",true,"ecosystem","2.11.3-17.45.66.1","excluding"]