Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2014-6040
HistorySep 02, 2014 - 12:00 a.m.

CVE-2014-6040

2014-09-0200:00:00
ubuntu.com
ubuntu.com
16

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.015

Percentile

87.0%

JSON

GNU C Library (aka glibc) before 2.20 allows context-dependent attackers to
cause a denial of service (out-of-bounds read and crash) via a multibyte
character value of “0xffff” to the iconv function when converting (1)
IBM933, (2) IBM935, (3) IBM937, (4) IBM939, or (5) IBM1364 encoded data to
UTF-8.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu10.04noarcheglibc< 2.11.1-0ubuntu7.19UNKNOWN
ubuntu12.04noarcheglibc< 2.15-0ubuntu10.9UNKNOWN
ubuntu14.04noarcheglibc< 2.19-0ubuntu6.4UNKNOWN
ubuntu14.10noarchglibc< 2.19-10ubuntu2.1UNKNOWN

Related

prion 1
debiancve 1
f5 2
cvelist 1
nvd 1
ibm 3
nessus 30
cve 1
openvas 23
redhat 2
amazon 2
oraclelinux 2
mageia 1
centos 2
securityvulns 1
ubuntu 1
fedora 1
osv 3
suse 3
debian 2
altlinux 1
slackware 1
gentoo 1
prion
prion
Out-of-bounds
2014-12-05 16:59:00
debiancve
debiancve
CVE-2014-6040
2014-12-05 16:59:09
f5
f5
SOL16435 - GNU C Library vulnerability CVE-2014-6040
2015-04-14 00:00:00
K16435 : GNU C Library vulnerability CVE-2014-6040
2015-09-16 00:00:00
cvelist
cvelist
CVE-2014-6040
2014-12-05 16:00:00
nvd
nvd
CVE-2014-6040
2014-12-05 16:59:09
ibm
ibm
Security Bulletin: GNU C library (glibc) vulnerability affect IBM DataPower Gateway appliances (CVE-2014-6040)
2018-06-15 07:02:32
Security Bulletin: GNU C Library (glibc) Vulnerability Affects Power Hardware Management Console (CVE-2015-0235, CVE-2014-6040, CVE-2014-7817)
2021-09-23 01:31:39
Security Bulletin: PowerKVM is affected by glibc vulnerabilities (Multiple CVEs)
2018-06-18 01:28:19
nessus
nessus
F5 Networks BIG-IP : GNU C Library vulnerability (SOL16435)
2015-09-17 00:00:00
OracleVM 3.3 : glibc (OVMSA-2015-0003)
2015-01-09 00:00:00
RHEL 6 : glibc (RHSA-2015:0016)
2015-01-08 00:00:00
cve
cve
CVE-2014-6040
2014-12-05 16:59:09
openvas
openvas
Mageia: Security Advisory (MGASA-2014-0376)
2022-01-28 00:00:00
RedHat Update for glibc RHSA-2015:0327-01
2015-03-06 00:00:00
CentOS Update for glibc CESA-2015:0016 centos6
2015-01-23 00:00:00
redhat
redhat
(RHSA-2015:0327) Moderate: glibc security and bug fix update
2015-03-05 00:00:00
(RHSA-2015:0016) Moderate: glibc security and bug fix update
2015-01-07 00:00:00
amazon
amazon
Medium: glibc
2015-03-23 08:30:00
Medium: glibc
2015-01-08 12:38:00
oraclelinux
oraclelinux
glibc security and bug fix update
2015-01-07 00:00:00
glibc security and bug fix update
2015-03-09 00:00:00
mageia
mageia
Updated glibc packages fix multiple security vulnerabilities
2014-09-15 14:36:30
centos
centos
glibc, nscd security update
2015-01-07 22:45:41
glibc, nscd security update
2015-03-17 13:28:04
securityvulns
securityvulns
GNU glibc buffer overflow
2014-09-01 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2014-12-03 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: glibc-2.18-19.fc20
2015-03-04 10:25:31
osv
osv
eglibc - security update
2014-11-29 00:00:00
eglibc - security update
2015-01-27 00:00:00
glibc-2.24-2.3 on GA media
2024-06-15 00:00:00
suse
suse
glibc (important)
2014-09-11 09:04:39
Security update for glibc (important)
2014-09-15 19:06:41
Security update for glibc (important)
2014-09-15 19:04:18
debian
debian
[SECURITY] [DLA 97-1] eglibc security update
2014-11-29 18:51:24
[SECURITY] [DSA 3142-1] eglibc security update
2015-01-27 15:39:01
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2016-02-17 00:00:00

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS

0.015

Percentile

87.0%

JSON
Related for UB:CVE-2014-6040
prion1debiancve1f52cvelist1nvd1ibm3nessus30cve1openvas23redhat2amazon2oraclelinux2mageia1centos2securityvulns1ubuntu1fedora1osv3suse3debian2altlinux1slackware1gentoo1