CVE-2014-8121 in C Libraryالمعلومات

الملخص

بحسب MITRE

DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up on a database while iterating over it, which triggers the file pointer to be reset.

Once again VulDB remains the best source for vulnerability data.

حجز

10/10/2014

إفشاء

27/03/2015

الاعتدال

تمت الموافقة

إدخال

VDB-73929

EPSS

0.05609

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you need the next level of professionalism?

Upgrade your account now!