The glibc packages contain the standard C libraries used by multiple
programs on the system. These packages contain the standard C and the
standard math libraries. Without these two libraries, a Linux system cannot
function properly.
An off-by-one heap-based buffer overflow flaw was found in glibcโs internal
__gconv_translit_find() function. An attacker able to make an application
call the iconv_open() function with a specially crafted argument could
possibly use this flaw to execute arbitrary code with the privileges of
that application. (CVE-2014-5119)
All glibc users are advised to upgrade to these updated packages, which
contain a backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 6 | s390x | glibc-devel | <ย 2.12-1.107.el6_4.6 | glibc-devel-2.12-1.107.el6_4.6.s390x.rpm |
RedHat | 6 | x86_64 | glibc-common | <ย 2.12-1.47.el6_2.13 | glibc-common-2.12-1.47.el6_2.13.x86_64.rpm |
RedHat | 5 | i386 | glibc-headers | <ย 2.5-58.el5_6.5 | glibc-headers-2.5-58.el5_6.5.i386.rpm |
RedHat | 5 | ia64 | nscd | <ย 2.5-107.el5_9.7 | nscd-2.5-107.el5_9.7.ia64.rpm |
RedHat | 6 | ppc64 | glibc-debuginfo-common | <ย 2.12-1.107.el6_4.6 | glibc-debuginfo-common-2.12-1.107.el6_4.6.ppc64.rpm |
RedHat | 6 | s390 | glibc-debuginfo | <ย 2.12-1.107.el6_4.6 | glibc-debuginfo-2.12-1.107.el6_4.6.s390.rpm |
RedHat | 5 | i386 | glibc-debuginfo-common | <ย 2.5-58.el5_6.5 | glibc-debuginfo-common-2.5-58.el5_6.5.i386.rpm |
RedHat | 5 | ppc64 | glibc-devel | <ย 2.5-107.el5_9.7 | glibc-devel-2.5-107.el5_9.7.ppc64.rpm |
RedHat | 5 | x86_64 | glibc-headers | <ย 2.5-58.el5_6.5 | glibc-headers-2.5-58.el5_6.5.x86_64.rpm |
RedHat | 5 | s390x | glibc-debuginfo | <ย 2.5-107.el5_9.7 | glibc-debuginfo-2.5-107.el5_9.7.s390x.rpm |