CVE 2016-1234
Stack-based buffer overflow in the glob implementation in GNU C Library (aka glibc) before 2.24, when GLOB_ALTDIRFUNC is used, allows context-dependent attackers to cause a denial of service (crash) via a long name.
Related bugs and status
CVE-2016-1234 (Candidate) is related to these bugs:
Bug #1561621: mosh-server crashed with SIGSEGV in execute_helper()
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1561621 | mosh-server crashed with SIGSEGV in execute_helper() | mosh (Ubuntu) | Undecided | Fix Released | ||
1561621 | mosh-server crashed with SIGSEGV in execute_helper() | mosh (Debian) | Unknown | Fix Released | ||
1561621 | mosh-server crashed with SIGSEGV in execute_helper() | GLibC | Medium | Fix Released | ||
1561621 | mosh-server crashed with SIGSEGV in execute_helper() | glibc (Ubuntu) | Medium | Confirmed |
Bug #1571456: id crashed with SIGSEGV in sock_eq()
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Ubuntu) | High | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | GLibC | Unknown | Unknown | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Fedora) | Undecided | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Debian) | Unknown | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Ubuntu Xenial) | High | Fix Released |
Bug #1597881: Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | eglibc (Ubuntu) | Low | Fix Released | ||
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | Juniper Openstack | Undecided | In Progress | ||
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | Juniper Openstack r2.22.x | Undecided | In Progress | ||
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | Juniper Openstack trunk | Undecided | In Progress | ||
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | Juniper Openstack r3.0 | Undecided | In Progress | ||
1597881 | Fix for CVE-2016-1234 in Ubuntu for eglibc 2.15-0ubuntu10.15 | Juniper Openstack r2.20 | Undecided | In Progress |
See the
CVE page on Mitre.org
for more details.