漏洞信息详情
GNU C Library 输入验证错误漏洞
- CNNVD编号:CNNVD-201901-772 <!--
- 危害等级: 中危-->
- 危害等级: 中危
- CVE编号: CVE-2016-10739
- 漏洞类型: 输入验证错误
- 发布时间: 2019-01-22
- 威胁类型: 本地
- 更新时间: 2021-01-05
- 厂 商:
- 漏洞来源: Red Hat
-
漏洞简介
GNU C Library(glibc,libc6)是一种按照LGPL许可协议发布的开源免费的C语言编译程序。
GNU C Library 2.28及之前版本中存在安全漏洞,该漏洞源于在成功解析含有IPv4地址的字符串时,程序会认定该字符串仅含有IPv4地址。目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告。
漏洞公告
目前厂商已修复该漏洞,详情请关注厂商主页:
http://www.gnu.org
参考网址
来源:BID
链接:http://www.securityfocus.com/bid/106672
来源:MISC
链接:https://bugzilla.redhat.com/show_bug.cgi?id=1347549
来源:REDHAT
链接:https://access.redhat.com/errata/RHSA-2019:2118
来源:SUSE
链接:http://lists.opensuse.org/opensuse-security-announce/2019-04/msg00082.html
来源:BID
链接:https://www.securityfocus.com/bid/106672
来源:MISC
链接:https://sourceware.org/bugzilla/show_bug.cgi?id=20018
来源:access.redhat.com
链接:https://access.redhat.com/errata/RHSA-2019:3513
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20190903-1.html
来源:access.redhat.com
链接:https://access.redhat.com/errata/RHSA-2019:2118
来源:www.suse.com
链接:https://www.suse.com/support/update/announcement/2019/suse-su-20191102-1.html
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2019.2965/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.3700/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/79918
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2021.0013/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/ESB-2020.4237/
来源:www.auscert.org.au
链接:https://www.auscert.org.au/bulletins/78622
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/153916/Red-Hat-Security-Advisory-2019-2118-01.html
来源:packetstormsecurity.com
链接:https://packetstormsecurity.com/files/159727/Red-Hat-Security-Advisory-2020-4298-01.html
来源:vigilance.fr
链接:https://vigilance.fr/vulnerability/glibc-information-disclosure-via-getaddrinfo-Accepted-Invalid-IPv4-Address-28707
受影响实体
暂无
补丁
暂无
还没有评论,来说两句吧...