SUSE-SU-2019:1102-1
Advisory lineage Upstream: 3 Downstream: 0
Published: 30 Apr 2019, 10:07
Last modified:04 Feb 2026, 03:00
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
30 Apr 2019, 10:07
Published
Vulnerability first disclosed
04 Feb 2026, 03:00
Last Modified
Vulnerability information updated
Description
Security update for glibc This update for glibc fixes the following issues: Security issues fixed: - CVE-2019-9169: regex: fix read overrun (bsc#1127308, BZ #24114) - CVE-2016-10739: Fully parse IPv4 address strings (bsc#1122729, BZ #20018) - CVE-2009-5155: ERE '0|()0|\1|0' causes regexec undefined behavior (bsc#1127223, BZ #18986) Non-security issues fixed: - Enable TLE only if GLIBC_ELISION_ENABLE=yes is defined (bsc#1131994, fate#322271) - Add more checks for valid ld.so.cache file (bsc#1110661, BZ #18093) - Added cfi information for start routines in order to stop unwinding (bsc#1128574) - ja_JP locale: Add entry for the new Japanese era (bsc#1100396, fate#325570, BZ #22964)
Affected Systems
- suse•glibc&distro=SUSE Linux Enterprise Desktop 12 SP4
< 2.22-100.8.1
- suse•glibc&distro=SUSE Linux Enterprise Server 12 SP4
< 2.22-100.8.1
- suse•glibc&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP4
< 2.22-100.8.1
- suse•glibc&distro=SUSE Linux Enterprise Software Development Kit 12 SP4
< 2.22-100.8.1
References (11)
- https://www.suse.com/support/update/announcement/2019/suse-su-20191102-1/
- https://bugzilla.suse.com/1100396
- https://bugzilla.suse.com/1110661
- https://bugzilla.suse.com/1122729
- https://bugzilla.suse.com/1127223
- https://bugzilla.suse.com/1127308
- https://bugzilla.suse.com/1128574
- https://bugzilla.suse.com/1131994
- https://www.suse.com/security/cve/CVE-2009-5155
- https://www.suse.com/security/cve/CVE-2016-10739
- https://www.suse.com/security/cve/CVE-2019-9169