Anolis OS update for glibc

Published: 2023-10-11 | Updated: 2025-03-28

Risk	Medium
Patch available	YES
Number of vulnerabilities	4
CVE-ID	CVE-2023-4527 CVE-2023-4806 CVE-2023-4813 CVE-2023-4911
CWE-ID	CWE-125 CWE-416 CWE-119
Exploitation vector	Network
Public exploit	Vulnerability #4 is being exploited in the wild.
Vulnerable software	Anolis OS Operating systems & Components / Operating system glibc-doc Operating systems & Components / Operating system package or component nss_hesiod Operating systems & Components / Operating system package or component nss_db Operating systems & Components / Operating system package or component nscd Operating systems & Components / Operating system package or component libnsl Operating systems & Components / Operating system package or component glibc-utils Operating systems & Components / Operating system package or component glibc-static Operating systems & Components / Operating system package or component glibc-nss-devel Operating systems & Components / Operating system package or component glibc-minimal-langpack Operating systems & Components / Operating system package or component glibc-locale-source Operating systems & Components / Operating system package or component glibc-langpack-zu Operating systems & Components / Operating system package or component glibc-langpack-zh Operating systems & Components / Operating system package or component glibc-langpack-yuw Operating systems & Components / Operating system package or component glibc-langpack-yue Operating systems & Components / Operating system package or component glibc-langpack-yo Operating systems & Components / Operating system package or component glibc-langpack-yi Operating systems & Components / Operating system package or component glibc-langpack-xh Operating systems & Components / Operating system package or component glibc-langpack-wo Operating systems & Components / Operating system package or component glibc-langpack-wal Operating systems & Components / Operating system package or component glibc-langpack-wae Operating systems & Components / Operating system package or component glibc-langpack-wa Operating systems & Components / Operating system package or component glibc-langpack-vi Operating systems & Components / Operating system package or component glibc-langpack-ve Operating systems & Components / Operating system package or component glibc-langpack-uz Operating systems & Components / Operating system package or component glibc-langpack-ur Operating systems & Components / Operating system package or component glibc-langpack-unm Operating systems & Components / Operating system package or component glibc-langpack-uk Operating systems & Components / Operating system package or component glibc-langpack-ug Operating systems & Components / Operating system package or component glibc-langpack-tt Operating systems & Components / Operating system package or component glibc-langpack-ts Operating systems & Components / Operating system package or component glibc-langpack-tr Operating systems & Components / Operating system package or component glibc-langpack-tpi Operating systems & Components / Operating system package or component glibc-langpack-to Operating systems & Components / Operating system package or component glibc-langpack-tn Operating systems & Components / Operating system package or component glibc-langpack-tl Operating systems & Components / Operating system package or component glibc-langpack-tk Operating systems & Components / Operating system package or component glibc-langpack-tig Operating systems & Components / Operating system package or component glibc-langpack-ti Operating systems & Components / Operating system package or component glibc-langpack-the Operating systems & Components / Operating system package or component glibc-langpack-th Operating systems & Components / Operating system package or component glibc-langpack-tg Operating systems & Components / Operating system package or component glibc-langpack-te Operating systems & Components / Operating system package or component glibc-langpack-tcy Operating systems & Components / Operating system package or component glibc-langpack-ta Operating systems & Components / Operating system package or component glibc-langpack-szl Operating systems & Components / Operating system package or component glibc-langpack-sw Operating systems & Components / Operating system package or component glibc-langpack-sv Operating systems & Components / Operating system package or component glibc-langpack-st Operating systems & Components / Operating system package or component glibc-langpack-ss Operating systems & Components / Operating system package or component glibc-langpack-sr Operating systems & Components / Operating system package or component glibc-langpack-sq Operating systems & Components / Operating system package or component glibc-langpack-so Operating systems & Components / Operating system package or component glibc-langpack-sm Operating systems & Components / Operating system package or component glibc-langpack-sl Operating systems & Components / Operating system package or component glibc-langpack-sk Operating systems & Components / Operating system package or component glibc-langpack-sid Operating systems & Components / Operating system package or component glibc-langpack-si Operating systems & Components / Operating system package or component glibc-langpack-shs Operating systems & Components / Operating system package or component glibc-langpack-shn Operating systems & Components / Operating system package or component glibc-langpack-sgs Operating systems & Components / Operating system package or component glibc-langpack-se Operating systems & Components / Operating system package or component glibc-langpack-sd Operating systems & Components / Operating system package or component glibc-langpack-sc Operating systems & Components / Operating system package or component glibc-langpack-sat Operating systems & Components / Operating system package or component glibc-langpack-sah Operating systems & Components / Operating system package or component glibc-langpack-sa Operating systems & Components / Operating system package or component glibc-langpack-rw Operating systems & Components / Operating system package or component glibc-langpack-ru Operating systems & Components / Operating system package or component glibc-langpack-ro Operating systems & Components / Operating system package or component glibc-langpack-raj Operating systems & Components / Operating system package or component glibc-langpack-quz Operating systems & Components / Operating system package or component glibc-langpack-pt Operating systems & Components / Operating system package or component glibc-langpack-ps Operating systems & Components / Operating system package or component glibc-langpack-pl Operating systems & Components / Operating system package or component glibc-langpack-pap Operating systems & Components / Operating system package or component glibc-langpack-pa Operating systems & Components / Operating system package or component glibc-langpack-os Operating systems & Components / Operating system package or component glibc-langpack-or Operating systems & Components / Operating system package or component glibc-langpack-om Operating systems & Components / Operating system package or component glibc-langpack-oc Operating systems & Components / Operating system package or component glibc-langpack-nso Operating systems & Components / Operating system package or component glibc-langpack-nr Operating systems & Components / Operating system package or component glibc-langpack-nn Operating systems & Components / Operating system package or component glibc-langpack-nl Operating systems & Components / Operating system package or component glibc-langpack-niu Operating systems & Components / Operating system package or component glibc-langpack-nhn Operating systems & Components / Operating system package or component glibc-langpack-ne Operating systems & Components / Operating system package or component glibc-langpack-nds Operating systems & Components / Operating system package or component glibc-langpack-nb Operating systems & Components / Operating system package or component glibc-langpack-nan Operating systems & Components / Operating system package or component glibc-langpack-my Operating systems & Components / Operating system package or component glibc-langpack-mt Operating systems & Components / Operating system package or component glibc-langpack-ms Operating systems & Components / Operating system package or component glibc-langpack-mr Operating systems & Components / Operating system package or component glibc-langpack-mni Operating systems & Components / Operating system package or component glibc-langpack-mn Operating systems & Components / Operating system package or component glibc-langpack-ml Operating systems & Components / Operating system package or component glibc-langpack-mk Operating systems & Components / Operating system package or component glibc-langpack-mjw Operating systems & Components / Operating system package or component glibc-langpack-miq Operating systems & Components / Operating system package or component glibc-langpack-mi Operating systems & Components / Operating system package or component glibc-langpack-mhr Operating systems & Components / Operating system package or component glibc-langpack-mg Operating systems & Components / Operating system package or component glibc-langpack-mfe Operating systems & Components / Operating system package or component glibc-langpack-mai Operating systems & Components / Operating system package or component glibc-langpack-mag Operating systems & Components / Operating system package or component glibc-langpack-lzh Operating systems & Components / Operating system package or component glibc-langpack-lv Operating systems & Components / Operating system package or component glibc-langpack-lt Operating systems & Components / Operating system package or component glibc-langpack-lo Operating systems & Components / Operating system package or component glibc-langpack-ln Operating systems & Components / Operating system package or component glibc-langpack-lij Operating systems & Components / Operating system package or component glibc-langpack-li Operating systems & Components / Operating system package or component glibc-langpack-lg Operating systems & Components / Operating system package or component glibc-langpack-lb Operating systems & Components / Operating system package or component glibc-langpack-ky Operating systems & Components / Operating system package or component glibc-langpack-kw Operating systems & Components / Operating system package or component glibc-langpack-ku Operating systems & Components / Operating system package or component glibc-langpack-ks Operating systems & Components / Operating system package or component glibc-langpack-kok Operating systems & Components / Operating system package or component glibc-langpack-ko Operating systems & Components / Operating system package or component glibc-langpack-kn Operating systems & Components / Operating system package or component glibc-langpack-km Operating systems & Components / Operating system package or component glibc-langpack-kl Operating systems & Components / Operating system package or component glibc-langpack-kk Operating systems & Components / Operating system package or component glibc-langpack-kab Operating systems & Components / Operating system package or component glibc-langpack-ka Operating systems & Components / Operating system package or component glibc-langpack-ja Operating systems & Components / Operating system package or component glibc-langpack-iu Operating systems & Components / Operating system package or component glibc-langpack-it Operating systems & Components / Operating system package or component glibc-langpack-is Operating systems & Components / Operating system package or component glibc-langpack-ik Operating systems & Components / Operating system package or component glibc-langpack-ig Operating systems & Components / Operating system package or component glibc-langpack-id Operating systems & Components / Operating system package or component glibc-langpack-ia Operating systems & Components / Operating system package or component glibc-langpack-hy Operating systems & Components / Operating system package or component glibc-langpack-hu Operating systems & Components / Operating system package or component glibc-langpack-ht Operating systems & Components / Operating system package or component glibc-langpack-hsb Operating systems & Components / Operating system package or component glibc-langpack-hr Operating systems & Components / Operating system package or component glibc-langpack-hne Operating systems & Components / Operating system package or component glibc-langpack-hif Operating systems & Components / Operating system package or component glibc-langpack-hi Operating systems & Components / Operating system package or component glibc-langpack-he Operating systems & Components / Operating system package or component glibc-langpack-hak Operating systems & Components / Operating system package or component glibc-langpack-ha Operating systems & Components / Operating system package or component glibc-langpack-gv Operating systems & Components / Operating system package or component glibc-langpack-gu Operating systems & Components / Operating system package or component glibc-langpack-gl Operating systems & Components / Operating system package or component glibc-langpack-gez Operating systems & Components / Operating system package or component glibc-langpack-gd Operating systems & Components / Operating system package or component glibc-langpack-ga Operating systems & Components / Operating system package or component glibc-langpack-fy Operating systems & Components / Operating system package or component glibc-langpack-fur Operating systems & Components / Operating system package or component glibc-langpack-fr Operating systems & Components / Operating system package or component glibc-langpack-fo Operating systems & Components / Operating system package or component glibc-langpack-fil Operating systems & Components / Operating system package or component glibc-langpack-fi Operating systems & Components / Operating system package or component glibc-langpack-ff Operating systems & Components / Operating system package or component glibc-langpack-fa Operating systems & Components / Operating system package or component glibc-langpack-eu Operating systems & Components / Operating system package or component glibc-langpack-et Operating systems & Components / Operating system package or component glibc-langpack-es Operating systems & Components / Operating system package or component glibc-langpack-eo Operating systems & Components / Operating system package or component glibc-langpack-en Operating systems & Components / Operating system package or component glibc-langpack-el Operating systems & Components / Operating system package or component glibc-langpack-dz Operating systems & Components / Operating system package or component glibc-langpack-dv Operating systems & Components / Operating system package or component glibc-langpack-dsb Operating systems & Components / Operating system package or component glibc-langpack-doi Operating systems & Components / Operating system package or component glibc-langpack-de Operating systems & Components / Operating system package or component glibc-langpack-da Operating systems & Components / Operating system package or component glibc-langpack-cy Operating systems & Components / Operating system package or component glibc-langpack-cv Operating systems & Components / Operating system package or component glibc-langpack-csb Operating systems & Components / Operating system package or component glibc-langpack-cs Operating systems & Components / Operating system package or component glibc-langpack-crh Operating systems & Components / Operating system package or component glibc-langpack-cmn Operating systems & Components / Operating system package or component glibc-langpack-chr Operating systems & Components / Operating system package or component glibc-langpack-ce Operating systems & Components / Operating system package or component glibc-langpack-ca Operating systems & Components / Operating system package or component glibc-langpack-byn Operating systems & Components / Operating system package or component glibc-langpack-bs Operating systems & Components / Operating system package or component glibc-langpack-brx Operating systems & Components / Operating system package or component glibc-langpack-br Operating systems & Components / Operating system package or component glibc-langpack-bo Operating systems & Components / Operating system package or component glibc-langpack-bn Operating systems & Components / Operating system package or component glibc-langpack-bi Operating systems & Components / Operating system package or component glibc-langpack-bho Operating systems & Components / Operating system package or component glibc-langpack-bhb Operating systems & Components / Operating system package or component glibc-langpack-bg Operating systems & Components / Operating system package or component glibc-langpack-ber Operating systems & Components / Operating system package or component glibc-langpack-bem Operating systems & Components / Operating system package or component glibc-langpack-be Operating systems & Components / Operating system package or component glibc-langpack-az Operating systems & Components / Operating system package or component glibc-langpack-ayc Operating systems & Components / Operating system package or component glibc-langpack-ast Operating systems & Components / Operating system package or component glibc-langpack-as Operating systems & Components / Operating system package or component glibc-langpack-ar Operating systems & Components / Operating system package or component glibc-langpack-anp Operating systems & Components / Operating system package or component glibc-langpack-an Operating systems & Components / Operating system package or component glibc-langpack-am Operating systems & Components / Operating system package or component glibc-langpack-ak Operating systems & Components / Operating system package or component glibc-langpack-agr Operating systems & Components / Operating system package or component glibc-langpack-af Operating systems & Components / Operating system package or component glibc-langpack-aa Operating systems & Components / Operating system package or component glibc-headers Operating systems & Components / Operating system package or component glibc-gconv-extra Operating systems & Components / Operating system package or component glibc-devel Operating systems & Components / Operating system package or component glibc-common Operating systems & Components / Operating system package or component glibc-benchtests Operating systems & Components / Operating system package or component glibc-all-langpacks Operating systems & Components / Operating system package or component glibc Operating systems & Components / Operating system package or component compat-libpthread-nonshared Operating systems & Components / Operating system package or component
Vendor	OpenAnolis

Security Bulletin

This security bulletin contains information about 4 vulnerabilities.

1) Out-of-bounds read

EUVDB-ID: #VU81097

Risk: Medium

CVSSv4.0: 1.7 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-4527

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information or perform a denial of service (DoS) attack.

The vulnerability exists due to a boundary condition within the getaddrinfo() function called with the AF_UNSPEC address family. A remote attacker with control over DNS server can send a DNS response via TCP larger than 2048 bytes, trigger an out-of-bounds read and crash the application or gain access to potentially sensitive information.

Successful exploitation of the vulnerability requires that system is configured with no-aaaa mode via /etc/resolv.conf.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

glibc-doc: before 2.28-225.0.4

nss_hesiod: before 2.28-225.0.4

nss_db: before 2.28-225.0.4

nscd: before 2.28-225.0.4

libnsl: before 2.28-225.0.4

glibc-utils: before 2.28-225.0.4

glibc-static: before 2.28-225.0.4

glibc-nss-devel: before 2.28-225.0.4

glibc-minimal-langpack: before 2.28-225.0.4

glibc-locale-source: before 2.28-225.0.4

glibc-langpack-zu: before 2.28-225.0.4

glibc-langpack-zh: before 2.28-225.0.4

glibc-langpack-yuw: before 2.28-225.0.4

glibc-langpack-yue: before 2.28-225.0.4

glibc-langpack-yo: before 2.28-225.0.4

glibc-langpack-yi: before 2.28-225.0.4

glibc-langpack-xh: before 2.28-225.0.4

glibc-langpack-wo: before 2.28-225.0.4

glibc-langpack-wal: before 2.28-225.0.4

glibc-langpack-wae: before 2.28-225.0.4

glibc-langpack-wa: before 2.28-225.0.4

glibc-langpack-vi: before 2.28-225.0.4

glibc-langpack-ve: before 2.28-225.0.4

glibc-langpack-uz: before 2.28-225.0.4

glibc-langpack-ur: before 2.28-225.0.4

glibc-langpack-unm: before 2.28-225.0.4

glibc-langpack-uk: before 2.28-225.0.4

glibc-langpack-ug: before 2.28-225.0.4

glibc-langpack-tt: before 2.28-225.0.4

glibc-langpack-ts: before 2.28-225.0.4

glibc-langpack-tr: before 2.28-225.0.4

glibc-langpack-tpi: before 2.28-225.0.4

glibc-langpack-to: before 2.28-225.0.4

glibc-langpack-tn: before 2.28-225.0.4

glibc-langpack-tl: before 2.28-225.0.4

glibc-langpack-tk: before 2.28-225.0.4

glibc-langpack-tig: before 2.28-225.0.4

glibc-langpack-ti: before 2.28-225.0.4

glibc-langpack-the: before 2.28-225.0.4

glibc-langpack-th: before 2.28-225.0.4

glibc-langpack-tg: before 2.28-225.0.4

glibc-langpack-te: before 2.28-225.0.4

glibc-langpack-tcy: before 2.28-225.0.4

glibc-langpack-ta: before 2.28-225.0.4

glibc-langpack-szl: before 2.28-225.0.4

glibc-langpack-sw: before 2.28-225.0.4

glibc-langpack-sv: before 2.28-225.0.4

glibc-langpack-st: before 2.28-225.0.4

glibc-langpack-ss: before 2.28-225.0.4

glibc-langpack-sr: before 2.28-225.0.4

glibc-langpack-sq: before 2.28-225.0.4

glibc-langpack-so: before 2.28-225.0.4

glibc-langpack-sm: before 2.28-225.0.4

glibc-langpack-sl: before 2.28-225.0.4

glibc-langpack-sk: before 2.28-225.0.4

glibc-langpack-sid: before 2.28-225.0.4

glibc-langpack-si: before 2.28-225.0.4

glibc-langpack-shs: before 2.28-225.0.4

glibc-langpack-shn: before 2.28-225.0.4

glibc-langpack-sgs: before 2.28-225.0.4

glibc-langpack-se: before 2.28-225.0.4

glibc-langpack-sd: before 2.28-225.0.4

glibc-langpack-sc: before 2.28-225.0.4

glibc-langpack-sat: before 2.28-225.0.4

glibc-langpack-sah: before 2.28-225.0.4

glibc-langpack-sa: before 2.28-225.0.4

glibc-langpack-rw: before 2.28-225.0.4

glibc-langpack-ru: before 2.28-225.0.4

glibc-langpack-ro: before 2.28-225.0.4

glibc-langpack-raj: before 2.28-225.0.4

glibc-langpack-quz: before 2.28-225.0.4

glibc-langpack-pt: before 2.28-225.0.4

glibc-langpack-ps: before 2.28-225.0.4

glibc-langpack-pl: before 2.28-225.0.4

glibc-langpack-pap: before 2.28-225.0.4

glibc-langpack-pa: before 2.28-225.0.4

glibc-langpack-os: before 2.28-225.0.4

glibc-langpack-or: before 2.28-225.0.4

glibc-langpack-om: before 2.28-225.0.4

glibc-langpack-oc: before 2.28-225.0.4

glibc-langpack-nso: before 2.28-225.0.4

glibc-langpack-nr: before 2.28-225.0.4

glibc-langpack-nn: before 2.28-225.0.4

glibc-langpack-nl: before 2.28-225.0.4

glibc-langpack-niu: before 2.28-225.0.4

glibc-langpack-nhn: before 2.28-225.0.4

glibc-langpack-ne: before 2.28-225.0.4

glibc-langpack-nds: before 2.28-225.0.4

glibc-langpack-nb: before 2.28-225.0.4

glibc-langpack-nan: before 2.28-225.0.4

glibc-langpack-my: before 2.28-225.0.4

glibc-langpack-mt: before 2.28-225.0.4

glibc-langpack-ms: before 2.28-225.0.4

glibc-langpack-mr: before 2.28-225.0.4

glibc-langpack-mni: before 2.28-225.0.4

glibc-langpack-mn: before 2.28-225.0.4

glibc-langpack-ml: before 2.28-225.0.4

glibc-langpack-mk: before 2.28-225.0.4

glibc-langpack-mjw: before 2.28-225.0.4

glibc-langpack-miq: before 2.28-225.0.4

glibc-langpack-mi: before 2.28-225.0.4

glibc-langpack-mhr: before 2.28-225.0.4

glibc-langpack-mg: before 2.28-225.0.4

glibc-langpack-mfe: before 2.28-225.0.4

glibc-langpack-mai: before 2.28-225.0.4

glibc-langpack-mag: before 2.28-225.0.4

glibc-langpack-lzh: before 2.28-225.0.4

glibc-langpack-lv: before 2.28-225.0.4

glibc-langpack-lt: before 2.28-225.0.4

glibc-langpack-lo: before 2.28-225.0.4

glibc-langpack-ln: before 2.28-225.0.4

glibc-langpack-lij: before 2.28-225.0.4

glibc-langpack-li: before 2.28-225.0.4

glibc-langpack-lg: before 2.28-225.0.4

glibc-langpack-lb: before 2.28-225.0.4

glibc-langpack-ky: before 2.28-225.0.4

glibc-langpack-kw: before 2.28-225.0.4

glibc-langpack-ku: before 2.28-225.0.4

glibc-langpack-ks: before 2.28-225.0.4

glibc-langpack-kok: before 2.28-225.0.4

glibc-langpack-ko: before 2.28-225.0.4

glibc-langpack-kn: before 2.28-225.0.4

glibc-langpack-km: before 2.28-225.0.4

glibc-langpack-kl: before 2.28-225.0.4

glibc-langpack-kk: before 2.28-225.0.4

glibc-langpack-kab: before 2.28-225.0.4

glibc-langpack-ka: before 2.28-225.0.4

glibc-langpack-ja: before 2.28-225.0.4

glibc-langpack-iu: before 2.28-225.0.4

glibc-langpack-it: before 2.28-225.0.4

glibc-langpack-is: before 2.28-225.0.4

glibc-langpack-ik: before 2.28-225.0.4

glibc-langpack-ig: before 2.28-225.0.4

glibc-langpack-id: before 2.28-225.0.4

glibc-langpack-ia: before 2.28-225.0.4

glibc-langpack-hy: before 2.28-225.0.4

glibc-langpack-hu: before 2.28-225.0.4

glibc-langpack-ht: before 2.28-225.0.4

glibc-langpack-hsb: before 2.28-225.0.4

glibc-langpack-hr: before 2.28-225.0.4

glibc-langpack-hne: before 2.28-225.0.4

glibc-langpack-hif: before 2.28-225.0.4

glibc-langpack-hi: before 2.28-225.0.4

glibc-langpack-he: before 2.28-225.0.4

glibc-langpack-hak: before 2.28-225.0.4

glibc-langpack-ha: before 2.28-225.0.4

glibc-langpack-gv: before 2.28-225.0.4

glibc-langpack-gu: before 2.28-225.0.4

glibc-langpack-gl: before 2.28-225.0.4

glibc-langpack-gez: before 2.28-225.0.4

glibc-langpack-gd: before 2.28-225.0.4

glibc-langpack-ga: before 2.28-225.0.4

glibc-langpack-fy: before 2.28-225.0.4

glibc-langpack-fur: before 2.28-225.0.4

glibc-langpack-fr: before 2.28-225.0.4

glibc-langpack-fo: before 2.28-225.0.4

glibc-langpack-fil: before 2.28-225.0.4

glibc-langpack-fi: before 2.28-225.0.4

glibc-langpack-ff: before 2.28-225.0.4

glibc-langpack-fa: before 2.28-225.0.4

glibc-langpack-eu: before 2.28-225.0.4

glibc-langpack-et: before 2.28-225.0.4

glibc-langpack-es: before 2.28-225.0.4

glibc-langpack-eo: before 2.28-225.0.4

glibc-langpack-en: before 2.28-225.0.4

glibc-langpack-el: before 2.28-225.0.4

glibc-langpack-dz: before 2.28-225.0.4

glibc-langpack-dv: before 2.28-225.0.4

glibc-langpack-dsb: before 2.28-225.0.4

glibc-langpack-doi: before 2.28-225.0.4

glibc-langpack-de: before 2.28-225.0.4

glibc-langpack-da: before 2.28-225.0.4

glibc-langpack-cy: before 2.28-225.0.4

glibc-langpack-cv: before 2.28-225.0.4

glibc-langpack-csb: before 2.28-225.0.4

glibc-langpack-cs: before 2.28-225.0.4

glibc-langpack-crh: before 2.28-225.0.4

glibc-langpack-cmn: before 2.28-225.0.4

glibc-langpack-chr: before 2.28-225.0.4

glibc-langpack-ce: before 2.28-225.0.4

glibc-langpack-ca: before 2.28-225.0.4

glibc-langpack-byn: before 2.28-225.0.4

glibc-langpack-bs: before 2.28-225.0.4

glibc-langpack-brx: before 2.28-225.0.4

glibc-langpack-br: before 2.28-225.0.4

glibc-langpack-bo: before 2.28-225.0.4

glibc-langpack-bn: before 2.28-225.0.4

glibc-langpack-bi: before 2.28-225.0.4

glibc-langpack-bho: before 2.28-225.0.4

glibc-langpack-bhb: before 2.28-225.0.4

glibc-langpack-bg: before 2.28-225.0.4

glibc-langpack-ber: before 2.28-225.0.4

glibc-langpack-bem: before 2.28-225.0.4

glibc-langpack-be: before 2.28-225.0.4

glibc-langpack-az: before 2.28-225.0.4

glibc-langpack-ayc: before 2.28-225.0.4

glibc-langpack-ast: before 2.28-225.0.4

glibc-langpack-as: before 2.28-225.0.4

glibc-langpack-ar: before 2.28-225.0.4

glibc-langpack-anp: before 2.28-225.0.4

glibc-langpack-an: before 2.28-225.0.4

glibc-langpack-am: before 2.28-225.0.4

glibc-langpack-ak: before 2.28-225.0.4

glibc-langpack-agr: before 2.28-225.0.4

glibc-langpack-af: before 2.28-225.0.4

glibc-langpack-aa: before 2.28-225.0.4

glibc-headers: before 2.28-225.0.4

glibc-gconv-extra: before 2.28-225.0.4

glibc-devel: before 2.28-225.0.4

glibc-common: before 2.28-225.0.4

glibc-benchtests: before 2.28-225.0.4

glibc-all-langpacks: before 2.28-225.0.4

glibc: before 2.28-225.0.4

compat-libpthread-nonshared: before 2.28-225.0.4

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0558

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU81447

Risk: Medium

CVSSv4.0: 4.6 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-4806

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the getaddrinfo() function. A remote attacker can perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

glibc-doc: before 2.28-225.0.4

nss_hesiod: before 2.28-225.0.4

nss_db: before 2.28-225.0.4

nscd: before 2.28-225.0.4

libnsl: before 2.28-225.0.4

glibc-utils: before 2.28-225.0.4

glibc-static: before 2.28-225.0.4

glibc-nss-devel: before 2.28-225.0.4

glibc-minimal-langpack: before 2.28-225.0.4

glibc-locale-source: before 2.28-225.0.4

glibc-langpack-zu: before 2.28-225.0.4

glibc-langpack-zh: before 2.28-225.0.4

glibc-langpack-yuw: before 2.28-225.0.4

glibc-langpack-yue: before 2.28-225.0.4

glibc-langpack-yo: before 2.28-225.0.4

glibc-langpack-yi: before 2.28-225.0.4

glibc-langpack-xh: before 2.28-225.0.4

glibc-langpack-wo: before 2.28-225.0.4

glibc-langpack-wal: before 2.28-225.0.4

glibc-langpack-wae: before 2.28-225.0.4

glibc-langpack-wa: before 2.28-225.0.4

glibc-langpack-vi: before 2.28-225.0.4

glibc-langpack-ve: before 2.28-225.0.4

glibc-langpack-uz: before 2.28-225.0.4

glibc-langpack-ur: before 2.28-225.0.4

glibc-langpack-unm: before 2.28-225.0.4

glibc-langpack-uk: before 2.28-225.0.4

glibc-langpack-ug: before 2.28-225.0.4

glibc-langpack-tt: before 2.28-225.0.4

glibc-langpack-ts: before 2.28-225.0.4

glibc-langpack-tr: before 2.28-225.0.4

glibc-langpack-tpi: before 2.28-225.0.4

glibc-langpack-to: before 2.28-225.0.4

glibc-langpack-tn: before 2.28-225.0.4

glibc-langpack-tl: before 2.28-225.0.4

glibc-langpack-tk: before 2.28-225.0.4

glibc-langpack-tig: before 2.28-225.0.4

glibc-langpack-ti: before 2.28-225.0.4

glibc-langpack-the: before 2.28-225.0.4

glibc-langpack-th: before 2.28-225.0.4

glibc-langpack-tg: before 2.28-225.0.4

glibc-langpack-te: before 2.28-225.0.4

glibc-langpack-tcy: before 2.28-225.0.4

glibc-langpack-ta: before 2.28-225.0.4

glibc-langpack-szl: before 2.28-225.0.4

glibc-langpack-sw: before 2.28-225.0.4

glibc-langpack-sv: before 2.28-225.0.4

glibc-langpack-st: before 2.28-225.0.4

glibc-langpack-ss: before 2.28-225.0.4

glibc-langpack-sr: before 2.28-225.0.4

glibc-langpack-sq: before 2.28-225.0.4

glibc-langpack-so: before 2.28-225.0.4

glibc-langpack-sm: before 2.28-225.0.4

glibc-langpack-sl: before 2.28-225.0.4

glibc-langpack-sk: before 2.28-225.0.4

glibc-langpack-sid: before 2.28-225.0.4

glibc-langpack-si: before 2.28-225.0.4

glibc-langpack-shs: before 2.28-225.0.4

glibc-langpack-shn: before 2.28-225.0.4

glibc-langpack-sgs: before 2.28-225.0.4

glibc-langpack-se: before 2.28-225.0.4

glibc-langpack-sd: before 2.28-225.0.4

glibc-langpack-sc: before 2.28-225.0.4

glibc-langpack-sat: before 2.28-225.0.4

glibc-langpack-sah: before 2.28-225.0.4

glibc-langpack-sa: before 2.28-225.0.4

glibc-langpack-rw: before 2.28-225.0.4

glibc-langpack-ru: before 2.28-225.0.4

glibc-langpack-ro: before 2.28-225.0.4

glibc-langpack-raj: before 2.28-225.0.4

glibc-langpack-quz: before 2.28-225.0.4

glibc-langpack-pt: before 2.28-225.0.4

glibc-langpack-ps: before 2.28-225.0.4

glibc-langpack-pl: before 2.28-225.0.4

glibc-langpack-pap: before 2.28-225.0.4

glibc-langpack-pa: before 2.28-225.0.4

glibc-langpack-os: before 2.28-225.0.4

glibc-langpack-or: before 2.28-225.0.4

glibc-langpack-om: before 2.28-225.0.4

glibc-langpack-oc: before 2.28-225.0.4

glibc-langpack-nso: before 2.28-225.0.4

glibc-langpack-nr: before 2.28-225.0.4

glibc-langpack-nn: before 2.28-225.0.4

glibc-langpack-nl: before 2.28-225.0.4

glibc-langpack-niu: before 2.28-225.0.4

glibc-langpack-nhn: before 2.28-225.0.4

glibc-langpack-ne: before 2.28-225.0.4

glibc-langpack-nds: before 2.28-225.0.4

glibc-langpack-nb: before 2.28-225.0.4

glibc-langpack-nan: before 2.28-225.0.4

glibc-langpack-my: before 2.28-225.0.4

glibc-langpack-mt: before 2.28-225.0.4

glibc-langpack-ms: before 2.28-225.0.4

glibc-langpack-mr: before 2.28-225.0.4

glibc-langpack-mni: before 2.28-225.0.4

glibc-langpack-mn: before 2.28-225.0.4

glibc-langpack-ml: before 2.28-225.0.4

glibc-langpack-mk: before 2.28-225.0.4

glibc-langpack-mjw: before 2.28-225.0.4

glibc-langpack-miq: before 2.28-225.0.4

glibc-langpack-mi: before 2.28-225.0.4

glibc-langpack-mhr: before 2.28-225.0.4

glibc-langpack-mg: before 2.28-225.0.4

glibc-langpack-mfe: before 2.28-225.0.4

glibc-langpack-mai: before 2.28-225.0.4

glibc-langpack-mag: before 2.28-225.0.4

glibc-langpack-lzh: before 2.28-225.0.4

glibc-langpack-lv: before 2.28-225.0.4

glibc-langpack-lt: before 2.28-225.0.4

glibc-langpack-lo: before 2.28-225.0.4

glibc-langpack-ln: before 2.28-225.0.4

glibc-langpack-lij: before 2.28-225.0.4

glibc-langpack-li: before 2.28-225.0.4

glibc-langpack-lg: before 2.28-225.0.4

glibc-langpack-lb: before 2.28-225.0.4

glibc-langpack-ky: before 2.28-225.0.4

glibc-langpack-kw: before 2.28-225.0.4

glibc-langpack-ku: before 2.28-225.0.4

glibc-langpack-ks: before 2.28-225.0.4

glibc-langpack-kok: before 2.28-225.0.4

glibc-langpack-ko: before 2.28-225.0.4

glibc-langpack-kn: before 2.28-225.0.4

glibc-langpack-km: before 2.28-225.0.4

glibc-langpack-kl: before 2.28-225.0.4

glibc-langpack-kk: before 2.28-225.0.4

glibc-langpack-kab: before 2.28-225.0.4

glibc-langpack-ka: before 2.28-225.0.4

glibc-langpack-ja: before 2.28-225.0.4

glibc-langpack-iu: before 2.28-225.0.4

glibc-langpack-it: before 2.28-225.0.4

glibc-langpack-is: before 2.28-225.0.4

glibc-langpack-ik: before 2.28-225.0.4

glibc-langpack-ig: before 2.28-225.0.4

glibc-langpack-id: before 2.28-225.0.4

glibc-langpack-ia: before 2.28-225.0.4

glibc-langpack-hy: before 2.28-225.0.4

glibc-langpack-hu: before 2.28-225.0.4

glibc-langpack-ht: before 2.28-225.0.4

glibc-langpack-hsb: before 2.28-225.0.4

glibc-langpack-hr: before 2.28-225.0.4

glibc-langpack-hne: before 2.28-225.0.4

glibc-langpack-hif: before 2.28-225.0.4

glibc-langpack-hi: before 2.28-225.0.4

glibc-langpack-he: before 2.28-225.0.4

glibc-langpack-hak: before 2.28-225.0.4

glibc-langpack-ha: before 2.28-225.0.4

glibc-langpack-gv: before 2.28-225.0.4

glibc-langpack-gu: before 2.28-225.0.4

glibc-langpack-gl: before 2.28-225.0.4

glibc-langpack-gez: before 2.28-225.0.4

glibc-langpack-gd: before 2.28-225.0.4

glibc-langpack-ga: before 2.28-225.0.4

glibc-langpack-fy: before 2.28-225.0.4

glibc-langpack-fur: before 2.28-225.0.4

glibc-langpack-fr: before 2.28-225.0.4

glibc-langpack-fo: before 2.28-225.0.4

glibc-langpack-fil: before 2.28-225.0.4

glibc-langpack-fi: before 2.28-225.0.4

glibc-langpack-ff: before 2.28-225.0.4

glibc-langpack-fa: before 2.28-225.0.4

glibc-langpack-eu: before 2.28-225.0.4

glibc-langpack-et: before 2.28-225.0.4

glibc-langpack-es: before 2.28-225.0.4

glibc-langpack-eo: before 2.28-225.0.4

glibc-langpack-en: before 2.28-225.0.4

glibc-langpack-el: before 2.28-225.0.4

glibc-langpack-dz: before 2.28-225.0.4

glibc-langpack-dv: before 2.28-225.0.4

glibc-langpack-dsb: before 2.28-225.0.4

glibc-langpack-doi: before 2.28-225.0.4

glibc-langpack-de: before 2.28-225.0.4

glibc-langpack-da: before 2.28-225.0.4

glibc-langpack-cy: before 2.28-225.0.4

glibc-langpack-cv: before 2.28-225.0.4

glibc-langpack-csb: before 2.28-225.0.4

glibc-langpack-cs: before 2.28-225.0.4

glibc-langpack-crh: before 2.28-225.0.4

glibc-langpack-cmn: before 2.28-225.0.4

glibc-langpack-chr: before 2.28-225.0.4

glibc-langpack-ce: before 2.28-225.0.4

glibc-langpack-ca: before 2.28-225.0.4

glibc-langpack-byn: before 2.28-225.0.4

glibc-langpack-bs: before 2.28-225.0.4

glibc-langpack-brx: before 2.28-225.0.4

glibc-langpack-br: before 2.28-225.0.4

glibc-langpack-bo: before 2.28-225.0.4

glibc-langpack-bn: before 2.28-225.0.4

glibc-langpack-bi: before 2.28-225.0.4

glibc-langpack-bho: before 2.28-225.0.4

glibc-langpack-bhb: before 2.28-225.0.4

glibc-langpack-bg: before 2.28-225.0.4

glibc-langpack-ber: before 2.28-225.0.4

glibc-langpack-bem: before 2.28-225.0.4

glibc-langpack-be: before 2.28-225.0.4

glibc-langpack-az: before 2.28-225.0.4

glibc-langpack-ayc: before 2.28-225.0.4

glibc-langpack-ast: before 2.28-225.0.4

glibc-langpack-as: before 2.28-225.0.4

glibc-langpack-ar: before 2.28-225.0.4

glibc-langpack-anp: before 2.28-225.0.4

glibc-langpack-an: before 2.28-225.0.4

glibc-langpack-am: before 2.28-225.0.4

glibc-langpack-ak: before 2.28-225.0.4

glibc-langpack-agr: before 2.28-225.0.4

glibc-langpack-af: before 2.28-225.0.4

glibc-langpack-aa: before 2.28-225.0.4

glibc-headers: before 2.28-225.0.4

glibc-gconv-extra: before 2.28-225.0.4

glibc-devel: before 2.28-225.0.4

glibc-common: before 2.28-225.0.4

glibc-benchtests: before 2.28-225.0.4

glibc-all-langpacks: before 2.28-225.0.4

glibc: before 2.28-225.0.4

compat-libpthread-nonshared: before 2.28-225.0.4

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0558

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU81453

Risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2023-4813

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the gaih_inet() function when the getaddrinfo() function is called and the hosts database in /etc/nsswitch.conf is configured with SUCCESS=continue or SUCCESS=merge. A remote attacker can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

glibc-doc: before 2.28-225.0.4

nss_hesiod: before 2.28-225.0.4

nss_db: before 2.28-225.0.4

nscd: before 2.28-225.0.4

libnsl: before 2.28-225.0.4

glibc-utils: before 2.28-225.0.4

glibc-static: before 2.28-225.0.4

glibc-nss-devel: before 2.28-225.0.4

glibc-minimal-langpack: before 2.28-225.0.4

glibc-locale-source: before 2.28-225.0.4

glibc-langpack-zu: before 2.28-225.0.4

glibc-langpack-zh: before 2.28-225.0.4

glibc-langpack-yuw: before 2.28-225.0.4

glibc-langpack-yue: before 2.28-225.0.4

glibc-langpack-yo: before 2.28-225.0.4

glibc-langpack-yi: before 2.28-225.0.4

glibc-langpack-xh: before 2.28-225.0.4

glibc-langpack-wo: before 2.28-225.0.4

glibc-langpack-wal: before 2.28-225.0.4

glibc-langpack-wae: before 2.28-225.0.4

glibc-langpack-wa: before 2.28-225.0.4

glibc-langpack-vi: before 2.28-225.0.4

glibc-langpack-ve: before 2.28-225.0.4

glibc-langpack-uz: before 2.28-225.0.4

glibc-langpack-ur: before 2.28-225.0.4

glibc-langpack-unm: before 2.28-225.0.4

glibc-langpack-uk: before 2.28-225.0.4

glibc-langpack-ug: before 2.28-225.0.4

glibc-langpack-tt: before 2.28-225.0.4

glibc-langpack-ts: before 2.28-225.0.4

glibc-langpack-tr: before 2.28-225.0.4

glibc-langpack-tpi: before 2.28-225.0.4

glibc-langpack-to: before 2.28-225.0.4

glibc-langpack-tn: before 2.28-225.0.4

glibc-langpack-tl: before 2.28-225.0.4

glibc-langpack-tk: before 2.28-225.0.4

glibc-langpack-tig: before 2.28-225.0.4

glibc-langpack-ti: before 2.28-225.0.4

glibc-langpack-the: before 2.28-225.0.4

glibc-langpack-th: before 2.28-225.0.4

glibc-langpack-tg: before 2.28-225.0.4

glibc-langpack-te: before 2.28-225.0.4

glibc-langpack-tcy: before 2.28-225.0.4

glibc-langpack-ta: before 2.28-225.0.4

glibc-langpack-szl: before 2.28-225.0.4

glibc-langpack-sw: before 2.28-225.0.4

glibc-langpack-sv: before 2.28-225.0.4

glibc-langpack-st: before 2.28-225.0.4

glibc-langpack-ss: before 2.28-225.0.4

glibc-langpack-sr: before 2.28-225.0.4

glibc-langpack-sq: before 2.28-225.0.4

glibc-langpack-so: before 2.28-225.0.4

glibc-langpack-sm: before 2.28-225.0.4

glibc-langpack-sl: before 2.28-225.0.4

glibc-langpack-sk: before 2.28-225.0.4

glibc-langpack-sid: before 2.28-225.0.4

glibc-langpack-si: before 2.28-225.0.4

glibc-langpack-shs: before 2.28-225.0.4

glibc-langpack-shn: before 2.28-225.0.4

glibc-langpack-sgs: before 2.28-225.0.4

glibc-langpack-se: before 2.28-225.0.4

glibc-langpack-sd: before 2.28-225.0.4

glibc-langpack-sc: before 2.28-225.0.4

glibc-langpack-sat: before 2.28-225.0.4

glibc-langpack-sah: before 2.28-225.0.4

glibc-langpack-sa: before 2.28-225.0.4

glibc-langpack-rw: before 2.28-225.0.4

glibc-langpack-ru: before 2.28-225.0.4

glibc-langpack-ro: before 2.28-225.0.4

glibc-langpack-raj: before 2.28-225.0.4

glibc-langpack-quz: before 2.28-225.0.4

glibc-langpack-pt: before 2.28-225.0.4

glibc-langpack-ps: before 2.28-225.0.4

glibc-langpack-pl: before 2.28-225.0.4

glibc-langpack-pap: before 2.28-225.0.4

glibc-langpack-pa: before 2.28-225.0.4

glibc-langpack-os: before 2.28-225.0.4

glibc-langpack-or: before 2.28-225.0.4

glibc-langpack-om: before 2.28-225.0.4

glibc-langpack-oc: before 2.28-225.0.4

glibc-langpack-nso: before 2.28-225.0.4

glibc-langpack-nr: before 2.28-225.0.4

glibc-langpack-nn: before 2.28-225.0.4

glibc-langpack-nl: before 2.28-225.0.4

glibc-langpack-niu: before 2.28-225.0.4

glibc-langpack-nhn: before 2.28-225.0.4

glibc-langpack-ne: before 2.28-225.0.4

glibc-langpack-nds: before 2.28-225.0.4

glibc-langpack-nb: before 2.28-225.0.4

glibc-langpack-nan: before 2.28-225.0.4

glibc-langpack-my: before 2.28-225.0.4

glibc-langpack-mt: before 2.28-225.0.4

glibc-langpack-ms: before 2.28-225.0.4

glibc-langpack-mr: before 2.28-225.0.4

glibc-langpack-mni: before 2.28-225.0.4

glibc-langpack-mn: before 2.28-225.0.4

glibc-langpack-ml: before 2.28-225.0.4

glibc-langpack-mk: before 2.28-225.0.4

glibc-langpack-mjw: before 2.28-225.0.4

glibc-langpack-miq: before 2.28-225.0.4

glibc-langpack-mi: before 2.28-225.0.4

glibc-langpack-mhr: before 2.28-225.0.4

glibc-langpack-mg: before 2.28-225.0.4

glibc-langpack-mfe: before 2.28-225.0.4

glibc-langpack-mai: before 2.28-225.0.4

glibc-langpack-mag: before 2.28-225.0.4

glibc-langpack-lzh: before 2.28-225.0.4

glibc-langpack-lv: before 2.28-225.0.4

glibc-langpack-lt: before 2.28-225.0.4

glibc-langpack-lo: before 2.28-225.0.4

glibc-langpack-ln: before 2.28-225.0.4

glibc-langpack-lij: before 2.28-225.0.4

glibc-langpack-li: before 2.28-225.0.4

glibc-langpack-lg: before 2.28-225.0.4

glibc-langpack-lb: before 2.28-225.0.4

glibc-langpack-ky: before 2.28-225.0.4

glibc-langpack-kw: before 2.28-225.0.4

glibc-langpack-ku: before 2.28-225.0.4

glibc-langpack-ks: before 2.28-225.0.4

glibc-langpack-kok: before 2.28-225.0.4

glibc-langpack-ko: before 2.28-225.0.4

glibc-langpack-kn: before 2.28-225.0.4

glibc-langpack-km: before 2.28-225.0.4

glibc-langpack-kl: before 2.28-225.0.4

glibc-langpack-kk: before 2.28-225.0.4

glibc-langpack-kab: before 2.28-225.0.4

glibc-langpack-ka: before 2.28-225.0.4

glibc-langpack-ja: before 2.28-225.0.4

glibc-langpack-iu: before 2.28-225.0.4

glibc-langpack-it: before 2.28-225.0.4

glibc-langpack-is: before 2.28-225.0.4

glibc-langpack-ik: before 2.28-225.0.4

glibc-langpack-ig: before 2.28-225.0.4

glibc-langpack-id: before 2.28-225.0.4

glibc-langpack-ia: before 2.28-225.0.4

glibc-langpack-hy: before 2.28-225.0.4

glibc-langpack-hu: before 2.28-225.0.4

glibc-langpack-ht: before 2.28-225.0.4

glibc-langpack-hsb: before 2.28-225.0.4

glibc-langpack-hr: before 2.28-225.0.4

glibc-langpack-hne: before 2.28-225.0.4

glibc-langpack-hif: before 2.28-225.0.4

glibc-langpack-hi: before 2.28-225.0.4

glibc-langpack-he: before 2.28-225.0.4

glibc-langpack-hak: before 2.28-225.0.4

glibc-langpack-ha: before 2.28-225.0.4

glibc-langpack-gv: before 2.28-225.0.4

glibc-langpack-gu: before 2.28-225.0.4

glibc-langpack-gl: before 2.28-225.0.4

glibc-langpack-gez: before 2.28-225.0.4

glibc-langpack-gd: before 2.28-225.0.4

glibc-langpack-ga: before 2.28-225.0.4

glibc-langpack-fy: before 2.28-225.0.4

glibc-langpack-fur: before 2.28-225.0.4

glibc-langpack-fr: before 2.28-225.0.4

glibc-langpack-fo: before 2.28-225.0.4

glibc-langpack-fil: before 2.28-225.0.4

glibc-langpack-fi: before 2.28-225.0.4

glibc-langpack-ff: before 2.28-225.0.4

glibc-langpack-fa: before 2.28-225.0.4

glibc-langpack-eu: before 2.28-225.0.4

glibc-langpack-et: before 2.28-225.0.4

glibc-langpack-es: before 2.28-225.0.4

glibc-langpack-eo: before 2.28-225.0.4

glibc-langpack-en: before 2.28-225.0.4

glibc-langpack-el: before 2.28-225.0.4

glibc-langpack-dz: before 2.28-225.0.4

glibc-langpack-dv: before 2.28-225.0.4

glibc-langpack-dsb: before 2.28-225.0.4

glibc-langpack-doi: before 2.28-225.0.4

glibc-langpack-de: before 2.28-225.0.4

glibc-langpack-da: before 2.28-225.0.4

glibc-langpack-cy: before 2.28-225.0.4

glibc-langpack-cv: before 2.28-225.0.4

glibc-langpack-csb: before 2.28-225.0.4

glibc-langpack-cs: before 2.28-225.0.4

glibc-langpack-crh: before 2.28-225.0.4

glibc-langpack-cmn: before 2.28-225.0.4

glibc-langpack-chr: before 2.28-225.0.4

glibc-langpack-ce: before 2.28-225.0.4

glibc-langpack-ca: before 2.28-225.0.4

glibc-langpack-byn: before 2.28-225.0.4

glibc-langpack-bs: before 2.28-225.0.4

glibc-langpack-brx: before 2.28-225.0.4

glibc-langpack-br: before 2.28-225.0.4

glibc-langpack-bo: before 2.28-225.0.4

glibc-langpack-bn: before 2.28-225.0.4

glibc-langpack-bi: before 2.28-225.0.4

glibc-langpack-bho: before 2.28-225.0.4

glibc-langpack-bhb: before 2.28-225.0.4

glibc-langpack-bg: before 2.28-225.0.4

glibc-langpack-ber: before 2.28-225.0.4

glibc-langpack-bem: before 2.28-225.0.4

glibc-langpack-be: before 2.28-225.0.4

glibc-langpack-az: before 2.28-225.0.4

glibc-langpack-ayc: before 2.28-225.0.4

glibc-langpack-ast: before 2.28-225.0.4

glibc-langpack-as: before 2.28-225.0.4

glibc-langpack-ar: before 2.28-225.0.4

glibc-langpack-anp: before 2.28-225.0.4

glibc-langpack-an: before 2.28-225.0.4

glibc-langpack-am: before 2.28-225.0.4

glibc-langpack-ak: before 2.28-225.0.4

glibc-langpack-agr: before 2.28-225.0.4

glibc-langpack-af: before 2.28-225.0.4

glibc-langpack-aa: before 2.28-225.0.4

glibc-headers: before 2.28-225.0.4

glibc-gconv-extra: before 2.28-225.0.4

glibc-devel: before 2.28-225.0.4

glibc-common: before 2.28-225.0.4

glibc-benchtests: before 2.28-225.0.4

glibc-all-langpacks: before 2.28-225.0.4

glibc: before 2.28-225.0.4

compat-libpthread-nonshared: before 2.28-225.0.4

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0558

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Buffer overflow

EUVDB-ID: #VU81437

Risk: Low

CVSSv4.0: 8.5 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2023-4911

CWE-ID: CWE-119 - Memory corruption

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to insufficient validation of GLIBC_TUNABLES environment variable. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Install updates from vendor's repository.

Vulnerable software versions

Anolis OS: 8

glibc-doc: before 2.28-225.0.4

nss_hesiod: before 2.28-225.0.4

nss_db: before 2.28-225.0.4

nscd: before 2.28-225.0.4

libnsl: before 2.28-225.0.4

glibc-utils: before 2.28-225.0.4

glibc-static: before 2.28-225.0.4

glibc-nss-devel: before 2.28-225.0.4

glibc-minimal-langpack: before 2.28-225.0.4

glibc-locale-source: before 2.28-225.0.4

glibc-langpack-zu: before 2.28-225.0.4

glibc-langpack-zh: before 2.28-225.0.4

glibc-langpack-yuw: before 2.28-225.0.4

glibc-langpack-yue: before 2.28-225.0.4

glibc-langpack-yo: before 2.28-225.0.4

glibc-langpack-yi: before 2.28-225.0.4

glibc-langpack-xh: before 2.28-225.0.4

glibc-langpack-wo: before 2.28-225.0.4

glibc-langpack-wal: before 2.28-225.0.4

glibc-langpack-wae: before 2.28-225.0.4

glibc-langpack-wa: before 2.28-225.0.4

glibc-langpack-vi: before 2.28-225.0.4

glibc-langpack-ve: before 2.28-225.0.4

glibc-langpack-uz: before 2.28-225.0.4

glibc-langpack-ur: before 2.28-225.0.4

glibc-langpack-unm: before 2.28-225.0.4

glibc-langpack-uk: before 2.28-225.0.4

glibc-langpack-ug: before 2.28-225.0.4

glibc-langpack-tt: before 2.28-225.0.4

glibc-langpack-ts: before 2.28-225.0.4

glibc-langpack-tr: before 2.28-225.0.4

glibc-langpack-tpi: before 2.28-225.0.4

glibc-langpack-to: before 2.28-225.0.4

glibc-langpack-tn: before 2.28-225.0.4

glibc-langpack-tl: before 2.28-225.0.4

glibc-langpack-tk: before 2.28-225.0.4

glibc-langpack-tig: before 2.28-225.0.4

glibc-langpack-ti: before 2.28-225.0.4

glibc-langpack-the: before 2.28-225.0.4

glibc-langpack-th: before 2.28-225.0.4

glibc-langpack-tg: before 2.28-225.0.4

glibc-langpack-te: before 2.28-225.0.4

glibc-langpack-tcy: before 2.28-225.0.4

glibc-langpack-ta: before 2.28-225.0.4

glibc-langpack-szl: before 2.28-225.0.4

glibc-langpack-sw: before 2.28-225.0.4

glibc-langpack-sv: before 2.28-225.0.4

glibc-langpack-st: before 2.28-225.0.4

glibc-langpack-ss: before 2.28-225.0.4

glibc-langpack-sr: before 2.28-225.0.4

glibc-langpack-sq: before 2.28-225.0.4

glibc-langpack-so: before 2.28-225.0.4

glibc-langpack-sm: before 2.28-225.0.4

glibc-langpack-sl: before 2.28-225.0.4

glibc-langpack-sk: before 2.28-225.0.4

glibc-langpack-sid: before 2.28-225.0.4

glibc-langpack-si: before 2.28-225.0.4

glibc-langpack-shs: before 2.28-225.0.4

glibc-langpack-shn: before 2.28-225.0.4

glibc-langpack-sgs: before 2.28-225.0.4

glibc-langpack-se: before 2.28-225.0.4

glibc-langpack-sd: before 2.28-225.0.4

glibc-langpack-sc: before 2.28-225.0.4

glibc-langpack-sat: before 2.28-225.0.4

glibc-langpack-sah: before 2.28-225.0.4

glibc-langpack-sa: before 2.28-225.0.4

glibc-langpack-rw: before 2.28-225.0.4

glibc-langpack-ru: before 2.28-225.0.4

glibc-langpack-ro: before 2.28-225.0.4

glibc-langpack-raj: before 2.28-225.0.4

glibc-langpack-quz: before 2.28-225.0.4

glibc-langpack-pt: before 2.28-225.0.4

glibc-langpack-ps: before 2.28-225.0.4

glibc-langpack-pl: before 2.28-225.0.4

glibc-langpack-pap: before 2.28-225.0.4

glibc-langpack-pa: before 2.28-225.0.4

glibc-langpack-os: before 2.28-225.0.4

glibc-langpack-or: before 2.28-225.0.4

glibc-langpack-om: before 2.28-225.0.4

glibc-langpack-oc: before 2.28-225.0.4

glibc-langpack-nso: before 2.28-225.0.4

glibc-langpack-nr: before 2.28-225.0.4

glibc-langpack-nn: before 2.28-225.0.4

glibc-langpack-nl: before 2.28-225.0.4

glibc-langpack-niu: before 2.28-225.0.4

glibc-langpack-nhn: before 2.28-225.0.4

glibc-langpack-ne: before 2.28-225.0.4

glibc-langpack-nds: before 2.28-225.0.4

glibc-langpack-nb: before 2.28-225.0.4

glibc-langpack-nan: before 2.28-225.0.4

glibc-langpack-my: before 2.28-225.0.4

glibc-langpack-mt: before 2.28-225.0.4

glibc-langpack-ms: before 2.28-225.0.4

glibc-langpack-mr: before 2.28-225.0.4

glibc-langpack-mni: before 2.28-225.0.4

glibc-langpack-mn: before 2.28-225.0.4

glibc-langpack-ml: before 2.28-225.0.4

glibc-langpack-mk: before 2.28-225.0.4

glibc-langpack-mjw: before 2.28-225.0.4

glibc-langpack-miq: before 2.28-225.0.4

glibc-langpack-mi: before 2.28-225.0.4

glibc-langpack-mhr: before 2.28-225.0.4

glibc-langpack-mg: before 2.28-225.0.4

glibc-langpack-mfe: before 2.28-225.0.4

glibc-langpack-mai: before 2.28-225.0.4

glibc-langpack-mag: before 2.28-225.0.4

glibc-langpack-lzh: before 2.28-225.0.4

glibc-langpack-lv: before 2.28-225.0.4

glibc-langpack-lt: before 2.28-225.0.4

glibc-langpack-lo: before 2.28-225.0.4

glibc-langpack-ln: before 2.28-225.0.4

glibc-langpack-lij: before 2.28-225.0.4

glibc-langpack-li: before 2.28-225.0.4

glibc-langpack-lg: before 2.28-225.0.4

glibc-langpack-lb: before 2.28-225.0.4

glibc-langpack-ky: before 2.28-225.0.4

glibc-langpack-kw: before 2.28-225.0.4

glibc-langpack-ku: before 2.28-225.0.4

glibc-langpack-ks: before 2.28-225.0.4

glibc-langpack-kok: before 2.28-225.0.4

glibc-langpack-ko: before 2.28-225.0.4

glibc-langpack-kn: before 2.28-225.0.4

glibc-langpack-km: before 2.28-225.0.4

glibc-langpack-kl: before 2.28-225.0.4

glibc-langpack-kk: before 2.28-225.0.4

glibc-langpack-kab: before 2.28-225.0.4

glibc-langpack-ka: before 2.28-225.0.4

glibc-langpack-ja: before 2.28-225.0.4

glibc-langpack-iu: before 2.28-225.0.4

glibc-langpack-it: before 2.28-225.0.4

glibc-langpack-is: before 2.28-225.0.4

glibc-langpack-ik: before 2.28-225.0.4

glibc-langpack-ig: before 2.28-225.0.4

glibc-langpack-id: before 2.28-225.0.4

glibc-langpack-ia: before 2.28-225.0.4

glibc-langpack-hy: before 2.28-225.0.4

glibc-langpack-hu: before 2.28-225.0.4

glibc-langpack-ht: before 2.28-225.0.4

glibc-langpack-hsb: before 2.28-225.0.4

glibc-langpack-hr: before 2.28-225.0.4

glibc-langpack-hne: before 2.28-225.0.4

glibc-langpack-hif: before 2.28-225.0.4

glibc-langpack-hi: before 2.28-225.0.4

glibc-langpack-he: before 2.28-225.0.4

glibc-langpack-hak: before 2.28-225.0.4

glibc-langpack-ha: before 2.28-225.0.4

glibc-langpack-gv: before 2.28-225.0.4

glibc-langpack-gu: before 2.28-225.0.4

glibc-langpack-gl: before 2.28-225.0.4

glibc-langpack-gez: before 2.28-225.0.4

glibc-langpack-gd: before 2.28-225.0.4

glibc-langpack-ga: before 2.28-225.0.4

glibc-langpack-fy: before 2.28-225.0.4

glibc-langpack-fur: before 2.28-225.0.4

glibc-langpack-fr: before 2.28-225.0.4

glibc-langpack-fo: before 2.28-225.0.4

glibc-langpack-fil: before 2.28-225.0.4

glibc-langpack-fi: before 2.28-225.0.4

glibc-langpack-ff: before 2.28-225.0.4

glibc-langpack-fa: before 2.28-225.0.4

glibc-langpack-eu: before 2.28-225.0.4

glibc-langpack-et: before 2.28-225.0.4

glibc-langpack-es: before 2.28-225.0.4

glibc-langpack-eo: before 2.28-225.0.4

glibc-langpack-en: before 2.28-225.0.4

glibc-langpack-el: before 2.28-225.0.4

glibc-langpack-dz: before 2.28-225.0.4

glibc-langpack-dv: before 2.28-225.0.4

glibc-langpack-dsb: before 2.28-225.0.4

glibc-langpack-doi: before 2.28-225.0.4

glibc-langpack-de: before 2.28-225.0.4

glibc-langpack-da: before 2.28-225.0.4

glibc-langpack-cy: before 2.28-225.0.4

glibc-langpack-cv: before 2.28-225.0.4

glibc-langpack-csb: before 2.28-225.0.4

glibc-langpack-cs: before 2.28-225.0.4

glibc-langpack-crh: before 2.28-225.0.4

glibc-langpack-cmn: before 2.28-225.0.4

glibc-langpack-chr: before 2.28-225.0.4

glibc-langpack-ce: before 2.28-225.0.4

glibc-langpack-ca: before 2.28-225.0.4

glibc-langpack-byn: before 2.28-225.0.4

glibc-langpack-bs: before 2.28-225.0.4

glibc-langpack-brx: before 2.28-225.0.4

glibc-langpack-br: before 2.28-225.0.4

glibc-langpack-bo: before 2.28-225.0.4

glibc-langpack-bn: before 2.28-225.0.4

glibc-langpack-bi: before 2.28-225.0.4

glibc-langpack-bho: before 2.28-225.0.4

glibc-langpack-bhb: before 2.28-225.0.4

glibc-langpack-bg: before 2.28-225.0.4

glibc-langpack-ber: before 2.28-225.0.4

glibc-langpack-bem: before 2.28-225.0.4

glibc-langpack-be: before 2.28-225.0.4

glibc-langpack-az: before 2.28-225.0.4

glibc-langpack-ayc: before 2.28-225.0.4

glibc-langpack-ast: before 2.28-225.0.4

glibc-langpack-as: before 2.28-225.0.4

glibc-langpack-ar: before 2.28-225.0.4

glibc-langpack-anp: before 2.28-225.0.4

glibc-langpack-an: before 2.28-225.0.4

glibc-langpack-am: before 2.28-225.0.4

glibc-langpack-ak: before 2.28-225.0.4

glibc-langpack-agr: before 2.28-225.0.4

glibc-langpack-af: before 2.28-225.0.4

glibc-langpack-aa: before 2.28-225.0.4

glibc-headers: before 2.28-225.0.4

glibc-gconv-extra: before 2.28-225.0.4

glibc-devel: before 2.28-225.0.4

glibc-common: before 2.28-225.0.4

glibc-benchtests: before 2.28-225.0.4

glibc-all-langpacks: before 2.28-225.0.4

glibc: before 2.28-225.0.4

compat-libpthread-nonshared: before 2.28-225.0.4

CPE2.3

External links

https://anas.openanolis.cn/errata/detail/ANSA-2023:0558

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.