2016-06-16
ALT-BU-2016-2837-1
Branch c6 update bulletin.
Closed vulnerabilities
Published: 2016-02-18
BDU:2016-00434
Уязвимость библиотеки glibc, позволяющая нарушителю вызвать отказ в обслуживании или выполнить произвольный код
Severity: CRITICAL (9.3)
References:
Published: 2016-02-19
BDU:2017-00283
Уязвимости библиотеки, обеспечивающей системные вызовы и основные функции, glibc, позволяющие нарушителю вызвать отказ в обслуживании или выполнить произвольный код
Severity: MEDIUM (6.8)
References:
Published: 2016-02-19
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-7547
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
Severity: HIGH (8.1)
Vector: CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
References:
- http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- FEDORA-2016-0480defc94
- FEDORA-2016-0480defc94
- FEDORA-2016-0f9e9a34ce
- FEDORA-2016-0f9e9a34ce
- SUSE-SU-2016:0470
- SUSE-SU-2016:0470
- SUSE-SU-2016:0471
- SUSE-SU-2016:0471
- SUSE-SU-2016:0472
- SUSE-SU-2016:0472
- SUSE-SU-2016:0473
- SUSE-SU-2016:0473
- openSUSE-SU-2016:0510
- openSUSE-SU-2016:0510
- openSUSE-SU-2016:0511
- openSUSE-SU-2016:0511
- openSUSE-SU-2016:0512
- openSUSE-SU-2016:0512
- HPSBGN03547
- HPSBGN03547
- HPSBGN03549
- HPSBGN03549
- HPSBGN03442
- HPSBGN03442
- HPSBGN03551
- HPSBGN03551
- HPSBGN03582
- HPSBGN03582
- http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html
- http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html
- http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html
- http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html
- http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html
- http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html
- http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html
- http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html
- RHSA-2016:0175
- RHSA-2016:0175
- RHSA-2016:0176
- RHSA-2016:0176
- RHSA-2016:0225
- RHSA-2016:0225
- RHSA-2016:0277
- RHSA-2016:0277
- 20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X
- 20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X
- 20210901 SEC Consult SA-20210901-0 :: Multiple vulnerabilities in MOXA devices
- 20210901 SEC Consult SA-20210901-0 :: Multiple vulnerabilities in MOXA devices
- 20220617 SEC Consult SA-20220615-0 :: Hardcoded Backdoor User and Outdated Software Components in Nexans FTTO GigaSwitch series
- 20220617 SEC Consult SA-20220615-0 :: Hardcoded Backdoor User and Outdated Software Components in Nexans FTTO GigaSwitch series
- http://support.citrix.com/article/CTX206991
- http://support.citrix.com/article/CTX206991
- USN-2900-1
- USN-2900-1
- DSA-3480
- DSA-3480
- DSA-3481
- DSA-3481
- http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en
- http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en
- http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
- 83265
- 83265
- 1035020
- 1035020
- http://www.vmware.com/security/advisories/VMSA-2016-0002.html
- http://www.vmware.com/security/advisories/VMSA-2016-0002.html
- https://access.redhat.com/articles/2161461
- https://access.redhat.com/articles/2161461
- https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/
- https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/
- https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/
- https://bto.bluecoat.com/security-advisory/sa114
- https://bto.bluecoat.com/security-advisory/sa114
- https://bugzilla.redhat.com/show_bug.cgi?id=1293532
- https://bugzilla.redhat.com/show_bug.cgi?id=1293532
- https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
- https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479
- https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
- https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
- https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes
- https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01
- https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161
- https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161
- https://kc.mcafee.com/corporate/index?page=content&id=SB10150
- https://kc.mcafee.com/corporate/index?page=content&id=SB10150
- 20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X
- 20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X
- GLSA-201602-02
- GLSA-201602-02
- https://security.netapp.com/advisory/ntap-20160217-0002/
- https://security.netapp.com/advisory/ntap-20160217-0002/
- https://sourceware.org/bugzilla/show_bug.cgi?id=18665
- https://sourceware.org/bugzilla/show_bug.cgi?id=18665
- [libc-alpha] 20160216 [PATCH] CVE-2015-7547 --- glibc getaddrinfo() stack-based buffer overflow
- [libc-alpha] 20160216 [PATCH] CVE-2015-7547 --- glibc getaddrinfo() stack-based buffer overflow
- https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html
- https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html
- https://support.lenovo.com/us/en/product_security/len_5450
- https://support.lenovo.com/us/en/product_security/len_5450
- https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17
- https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17
- 39454
- 39454
- 40339
- 40339
- VU#457759
- VU#457759
- https://www.tenable.com/security/research/tra-2017-08
- https://www.tenable.com/security/research/tra-2017-08
Package libsndfile updated to version 1.0.25-alt1.M60C.2 for branch c6 in task 165998.
Closed vulnerabilities
Published: 2015-11-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-7805
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file.
Severity: CRITICAL (9.3)
References:
- FEDORA-2015-5afed1aad2
- FEDORA-2015-5afed1aad2
- FEDORA-2015-56be43eae6
- FEDORA-2015-56be43eae6
- FEDORA-2015-0f405832d3
- FEDORA-2015-0f405832d3
- openSUSE-SU-2015:1995
- openSUSE-SU-2015:1995
- openSUSE-SU-2015:2119
- openSUSE-SU-2015:2119
- http://packetstormsecurity.com/files/133926/libsndfile-1.0.25-Heap-Overflow.html
- http://packetstormsecurity.com/files/133926/libsndfile-1.0.25-Heap-Overflow.html
- http://www.nemux.org/2015/10/13/libsndfile-1-0-25-heap-overflow/
- http://www.nemux.org/2015/10/13/libsndfile-1-0-25-heap-overflow/
- [oss-security] 20151103 CVE request: libsndfile 1.0.25 heap overflow
- [oss-security] 20151103 CVE request: libsndfile 1.0.25 heap overflow
- [oss-security] 20151103 Re: CVE request: libsndfile 1.0.25 heap overflow
- [oss-security] 20151103 Re: CVE request: libsndfile 1.0.25 heap overflow
- 77427
- 77427
- USN-2832-1
- USN-2832-1
- GLSA-201612-03
- GLSA-201612-03
- 38447
- 38447
Package qemu-kvm-el updated to version 0.12.1.2-alt11.M60C.3 for branch c6 in task 165989.
Closed vulnerabilities
Published: 2012-01-27
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2012-0029
Heap-based buffer overflow in the process_tx_desc function in the e1000 emulation (hw/e1000.c) in qemu-kvm 0.12, and possibly other versions, allows guest OS users to cause a denial of service (QEMU crash) and possibly execute arbitrary code via crafted legacy mode packets.
Severity: HIGH (7.4)
References:
- http://git.qemu.org/?p=qemu.git%3Ba=log%3Bh=refs/heads/stable-1.0
- FEDORA-2012-8604
- SUSE-SU-2012:1320
- openSUSE-SU-2012:0207
- RHSA-2012:0370
- 47740
- 47741
- 47992
- 48318
- 50913
- RHSA-2012:0050
- 51642
- USN-1339-1
- https://bugzilla.redhat.com/show_bug.cgi?id=772075
- qemu-processtxdesc-bo(72656)
- http://git.qemu.org/?p=qemu.git%3Ba=log%3Bh=refs/heads/stable-1.0
- qemu-processtxdesc-bo(72656)
- https://bugzilla.redhat.com/show_bug.cgi?id=772075
- USN-1339-1
- 51642
- RHSA-2012:0050
- 50913
- 48318
- 47992
- 47741
- 47740
- RHSA-2012:0370
- openSUSE-SU-2012:0207
- SUSE-SU-2012:1320
- FEDORA-2012-8604
Closed vulnerabilities
Published: 2016-02-22
BDU:2016-00608
Уязвимость утилиты архивирования Сpio, позволяющая нарушителю вызвать отказ в обслуживании
Severity: MEDIUM (4.3)
References:
Published: 2016-02-22
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2016-2037
The cpio_safer_name_suffix function in util.c in cpio 2.11 allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted cpio file.
Severity: MEDIUM (6.5)
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
References:
- DSA-3483
- DSA-3483
- [oss-security] 20160119 CVE request: out-of-bounds write with cpio 2.11
- [oss-security] 20160119 CVE request: out-of-bounds write with cpio 2.11
- [oss-security] 20160122 Re: CVE request: out-of-bounds write with cpio 2.11
- [oss-security] 20160122 Re: CVE request: out-of-bounds write with cpio 2.11
- 82293
- 82293
- 1035067
- 1035067
- USN-2906-1
- USN-2906-1
Closed vulnerabilities
Published: 2015-12-17
BDU:2016-00001
Уязвимости загрузчика операционных систем Grub2, позволяющие нарушителю получить конфиденциальную информацию или вызвать отказ в обслуживании
References:
Published: 2015-12-17
Modified: 2024-11-21
Modified: 2024-11-21
CVE-2015-8370
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service (disk corruption) via backspace characters in the (1) grub_username_get function in grub-core/normal/auth.c or the (2) grub_password_get function in lib/crypto.c, which trigger an "Off-by-two" or "Out of bounds overwrite" memory error.
References:
- http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html
- http://hmarco.org/bugs/CVE-2015-8370-Grub2-authentication-bypass.html
- FEDORA-2015-cebe5133e7
- FEDORA-2015-cebe5133e7
- FEDORA-2015-90c27b6e91
- FEDORA-2015-90c27b6e91
- openSUSE-SU-2015:2375
- openSUSE-SU-2015:2375
- SUSE-SU-2015:2385
- SUSE-SU-2015:2385
- SUSE-SU-2015:2386
- SUSE-SU-2015:2386
- SUSE-SU-2015:2387
- SUSE-SU-2015:2387
- openSUSE-SU-2015:2392
- openSUSE-SU-2015:2392
- SUSE-SU-2015:2399
- SUSE-SU-2015:2399
- openSUSE-SU-2016:0036
- openSUSE-SU-2016:0036
- http://packetstormsecurity.com/files/134831/Grub2-Authentication-Bypass.html
- http://packetstormsecurity.com/files/134831/Grub2-Authentication-Bypass.html
- RHSA-2015:2623
- RHSA-2015:2623
- 20151216 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- 20151216 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- DSA-3421
- DSA-3421
- [oss-security] 20151215 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- [oss-security] 20151215 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- [oss-security] 20240116 CVE-2023-4001: a password bypass vulnerability in the downstream GRUB boot manager
- [oss-security] 20240116 CVE-2023-4001: a password bypass vulnerability in the downstream GRUB boot manager
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
- http://www.oracle.com/technetwork/topics/security/cpujan2016-2367955.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
- http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html
- 20151215 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- 20151215 Back to 28: Grub2 Authentication Bypass 0-Day [CVE-2015-8370]
- 79358
- 79358
- 1034422
- 1034422
- USN-2836-1
- USN-2836-1
- GLSA-201512-03
- GLSA-201512-03