CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
84.9%
Tavis Ormandy and John Haxby discovered that the GNU C Library contained an
off-by-one error when performing transliteration module loading. A local
attacker could exploit this to gain administrative privileges.
(CVE-2014-5119)
USN-2306-1 fixed vulnerabilities in the GNU C Library. On Ubuntu 10.04 LTS
and Ubuntu 12.04 LTS the security update for CVE-2014-0475 caused a
regression with localplt on PowerPC. This update fixes the problem. We
apologize for the inconvenience.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 14.04 | noarch | libc6 | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc-bin | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc-dev-bin | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-dbg | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-dev | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-dev-i386 | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-dev-x32 | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-i386 | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-pic | <Β 2.19-0ubuntu6.3 | UNKNOWN |
Ubuntu | 14.04 | noarch | libc6-prof | <Β 2.19-0ubuntu6.3 | UNKNOWN |