SUSE update for glibc
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 5 |
| CVE-ID | CVE-2015-8982 CVE-2015-8983 CVE-2021-3999 CVE-2022-23218 CVE-2022-23219 |
| CWE-ID | CWE-121 CWE-122 CWE-193 CWE-119 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
SUSE Linux Enterprise Server Operating systems & Components / Operating system SUSE Linux Enterprise Point of Sale Operating systems & Components / Operating system SUSE Linux Enterprise Debuginfo Operating systems & Components / Operating system glibc-debuginfo-32bit Operating systems & Components / Operating system package or component glibc-debugsource Operating systems & Components / Operating system package or component glibc-debuginfo Operating systems & Components / Operating system package or component glibc-profile-32bit Operating systems & Components / Operating system package or component glibc-locale-32bit Operating systems & Components / Operating system package or component glibc-devel-32bit Operating systems & Components / Operating system package or component glibc-32bit Operating systems & Components / Operating system package or component nscd Operating systems & Components / Operating system package or component glibc-profile Operating systems & Components / Operating system package or component glibc-locale Operating systems & Components / Operating system package or component glibc-info Operating systems & Components / Operating system package or component glibc-i18ndata Operating systems & Components / Operating system package or component glibc-html Operating systems & Components / Operating system package or component glibc-devel Operating systems & Components / Operating system package or component glibc Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 5 vulnerabilities.
1) Stack-based buffer overflow
EUVDB-ID: #VU110099
Risk: High
CVSSv4.0: N/A
CVE-ID: CVE-2015-8982
CWE-ID:
CWE-121 - Stack-based buffer overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error when processing a long string, which triggers a stack-based buffer overflow. A remote unauthenticated attacker can trigger stack-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package glibc to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server: 11-SP4-LTSS-EXTREME-CORE
SUSE Linux Enterprise Point of Sale: 11-SP3
SUSE Linux Enterprise Debuginfo: 11-SP3 - 11-SP4
glibc-debuginfo-32bit: before 2.11.3-17.110.40.1
glibc-debugsource: before 2.11.3-17.110.40.1
glibc-debuginfo: before 2.11.3-17.110.40.1
glibc-profile-32bit: before 2.11.3-17.110.40.1
glibc-locale-32bit: before 2.11.3-17.110.40.1
glibc-devel-32bit: before 2.11.3-17.110.40.1
glibc-32bit: before 2.11.3-17.110.40.1
nscd: before 2.11.3-17.110.40.1
glibc-profile: before 2.11.3-17.110.40.1
glibc-locale: before 2.11.3-17.110.40.1
glibc-info: before 2.11.3-17.110.40.1
glibc-i18ndata: before 2.11.3-17.110.40.1
glibc-html: before 2.11.3-17.110.40.1
glibc-devel: before 2.11.3-17.110.40.1
glibc: before 2.11.3-17.110.40.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_server:11-SP4-LTSS-EXTREME-CORE:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_point_of_sale:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:glibc-debuginfo-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:nscd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-info:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-i18ndata:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
2) Heap-based buffer overflow
EUVDB-ID: #VU110098
Risk: High
CVSSv4.0: N/A
CVE-ID: CVE-2015-8983
CWE-ID:
CWE-122 - Heap-based Buffer Overflow
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error in Integer overflow in the _IO_wstr_overflow function in libio/wstrops.c in the GNU C Library (aka glibc or libc6) before 2.22. A remote attacker can use vectors related to computing a size in bytes to trigger a heap-based buffer overflow and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package glibc to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server: 11-SP4-LTSS-EXTREME-CORE
SUSE Linux Enterprise Point of Sale: 11-SP3
SUSE Linux Enterprise Debuginfo: 11-SP3 - 11-SP4
glibc-debuginfo-32bit: before 2.11.3-17.110.40.1
glibc-debugsource: before 2.11.3-17.110.40.1
glibc-debuginfo: before 2.11.3-17.110.40.1
glibc-profile-32bit: before 2.11.3-17.110.40.1
glibc-locale-32bit: before 2.11.3-17.110.40.1
glibc-devel-32bit: before 2.11.3-17.110.40.1
glibc-32bit: before 2.11.3-17.110.40.1
nscd: before 2.11.3-17.110.40.1
glibc-profile: before 2.11.3-17.110.40.1
glibc-locale: before 2.11.3-17.110.40.1
glibc-info: before 2.11.3-17.110.40.1
glibc-i18ndata: before 2.11.3-17.110.40.1
glibc-html: before 2.11.3-17.110.40.1
glibc-devel: before 2.11.3-17.110.40.1
glibc: before 2.11.3-17.110.40.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_server:11-SP4-LTSS-EXTREME-CORE:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_point_of_sale:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:glibc-debuginfo-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:nscd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-info:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-i18ndata:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) Off-by-one
EUVDB-ID: #VU61293
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2021-3999
CWE-ID:
CWE-193 - Off-by-one Error
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the system.
The vulnerability exists due to an off-by-one error glibc getcwd() function. A remote attacker can pass specially crafted input to the application that is using the affected library version, trigger an off-by-one error and execute arbitrary code on the target system.
Update the affected package glibc to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server: 11-SP4-LTSS-EXTREME-CORE
SUSE Linux Enterprise Point of Sale: 11-SP3
SUSE Linux Enterprise Debuginfo: 11-SP3 - 11-SP4
glibc-debuginfo-32bit: before 2.11.3-17.110.40.1
glibc-debugsource: before 2.11.3-17.110.40.1
glibc-debuginfo: before 2.11.3-17.110.40.1
glibc-profile-32bit: before 2.11.3-17.110.40.1
glibc-locale-32bit: before 2.11.3-17.110.40.1
glibc-devel-32bit: before 2.11.3-17.110.40.1
glibc-32bit: before 2.11.3-17.110.40.1
nscd: before 2.11.3-17.110.40.1
glibc-profile: before 2.11.3-17.110.40.1
glibc-locale: before 2.11.3-17.110.40.1
glibc-info: before 2.11.3-17.110.40.1
glibc-i18ndata: before 2.11.3-17.110.40.1
glibc-html: before 2.11.3-17.110.40.1
glibc-devel: before 2.11.3-17.110.40.1
glibc: before 2.11.3-17.110.40.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_server:11-SP4-LTSS-EXTREME-CORE:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_point_of_sale:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:glibc-debuginfo-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:nscd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-info:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-i18ndata:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Buffer overflow
EUVDB-ID: #VU61294
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2022-23218
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the svcunix_create() in the sunrpc module ib glibc. A remote attacker can pass specially crafted input to the application that is using the affected library version, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package glibc to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server: 11-SP4-LTSS-EXTREME-CORE
SUSE Linux Enterprise Point of Sale: 11-SP3
SUSE Linux Enterprise Debuginfo: 11-SP3 - 11-SP4
glibc-debuginfo-32bit: before 2.11.3-17.110.40.1
glibc-debugsource: before 2.11.3-17.110.40.1
glibc-debuginfo: before 2.11.3-17.110.40.1
glibc-profile-32bit: before 2.11.3-17.110.40.1
glibc-locale-32bit: before 2.11.3-17.110.40.1
glibc-devel-32bit: before 2.11.3-17.110.40.1
glibc-32bit: before 2.11.3-17.110.40.1
nscd: before 2.11.3-17.110.40.1
glibc-profile: before 2.11.3-17.110.40.1
glibc-locale: before 2.11.3-17.110.40.1
glibc-info: before 2.11.3-17.110.40.1
glibc-i18ndata: before 2.11.3-17.110.40.1
glibc-html: before 2.11.3-17.110.40.1
glibc-devel: before 2.11.3-17.110.40.1
glibc: before 2.11.3-17.110.40.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_server:11-SP4-LTSS-EXTREME-CORE:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_point_of_sale:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:glibc-debuginfo-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:nscd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-info:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-i18ndata:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Buffer overflow
EUVDB-ID: #VU61295
Risk: High
CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]
CVE-ID: CVE-2022-23219
CWE-ID:
CWE-119 - Memory corruption
Exploit availability: No
DescriptionThe vulnerability allows a remote attacker to execute arbitrary code on the target system.
The vulnerability exists due to a boundary error within the clnt_create() function in the sunrpc module. A remote attacker can pass specially crafted input to the application that is using the affected library version, trigger memory corruption and execute arbitrary code on the target system.
Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.
MitigationUpdate the affected package glibc to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Server: 11-SP4-LTSS-EXTREME-CORE
SUSE Linux Enterprise Point of Sale: 11-SP3
SUSE Linux Enterprise Debuginfo: 11-SP3 - 11-SP4
glibc-debuginfo-32bit: before 2.11.3-17.110.40.1
glibc-debugsource: before 2.11.3-17.110.40.1
glibc-debuginfo: before 2.11.3-17.110.40.1
glibc-profile-32bit: before 2.11.3-17.110.40.1
glibc-locale-32bit: before 2.11.3-17.110.40.1
glibc-devel-32bit: before 2.11.3-17.110.40.1
glibc-32bit: before 2.11.3-17.110.40.1
nscd: before 2.11.3-17.110.40.1
glibc-profile: before 2.11.3-17.110.40.1
glibc-locale: before 2.11.3-17.110.40.1
glibc-info: before 2.11.3-17.110.40.1
glibc-i18ndata: before 2.11.3-17.110.40.1
glibc-html: before 2.11.3-17.110.40.1
glibc-devel: before 2.11.3-17.110.40.1
glibc: before 2.11.3-17.110.40.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_server:11-SP4-LTSS-EXTREME-CORE:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_point_of_sale:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_debuginfo:11-SP4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:glibc-debuginfo-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-32bit:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:nscd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-profile:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-locale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-info:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-i18ndata:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:glibc:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
