SUSE-SU-2022:14923-1
See a problem?- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2022:14923-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2022:14923-1
- Related
- Published
- 2022-03-21T08:47:58Z
- Modified
- 2022-03-21T08:47:58Z
- Summary
- Security update for glibc
- Details
-
This update for glibc fixes the following issues:
- CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for 'unix' (bsc#1194768, BZ #22542)
- CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create (bsc#1194770, BZ #28768)
- CVE-2021-3999: Fixed in getcwd to set errno to ERANGE for size == 1 (bsc#1194640, BZ #28769)
- CVE-2015-8983: Fixed IOwstr_overflow integer overflow (bsc#1193615, BZ #17269)
- CVE-2015-8982: Fixed memory handling in strxfrm_l (bsc#1193616, BZ #16009)
- References
-
- https://www.suse.com/support/update/announcement/2022/suse-su-202214923-1/
- https://bugzilla.suse.com/1193615
- https://bugzilla.suse.com/1193616
- https://bugzilla.suse.com/1194640
- https://bugzilla.suse.com/1194768
- https://bugzilla.suse.com/1194770
- https://www.suse.com/security/cve/CVE-2015-8982
- https://www.suse.com/security/cve/CVE-2015-8983
- https://www.suse.com/security/cve/CVE-2021-3999
- https://www.suse.com/security/cve/CVE-2022-23218
- https://www.suse.com/security/cve/CVE-2022-23219
Affected packages
SUSE:Linux Enterprise Point of Sale 11 SP3 / glibc
Package
- Name
- glibc
- Purl
- purl:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Point%20of%20Sale%2011%20SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.11.3-17.110.40.1
Ecosystem specific
{
"binaries": [
{
"glibc-info": "2.11.3-17.110.40.1",
"glibc-devel": "2.11.3-17.110.40.1",
"glibc-i18ndata": "2.11.3-17.110.40.1",
"glibc-profile": "2.11.3-17.110.40.1",
"glibc-locale": "2.11.3-17.110.40.1",
"nscd": "2.11.3-17.110.40.1",
"glibc-html": "2.11.3-17.110.40.1",
"glibc": "2.11.3-17.110.40.1"
}
]
}
SUSE:Linux Enterprise Server 11 SP4-LTSS / glibc
Package
- Name
- glibc
- Purl
- purl:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4-LTSS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed2.11.3-17.110.40.1
Ecosystem specific
{
"binaries": [
{
"glibc-devel-32bit": "2.11.3-17.110.40.1",
"glibc-html": "2.11.3-17.110.40.1",
"glibc-locale-32bit": "2.11.3-17.110.40.1",
"glibc-info": "2.11.3-17.110.40.1",
"glibc-devel": "2.11.3-17.110.40.1",
"glibc-i18ndata": "2.11.3-17.110.40.1",
"glibc-profile": "2.11.3-17.110.40.1",
"glibc-locale": "2.11.3-17.110.40.1",
"nscd": "2.11.3-17.110.40.1",
"glibc-32bit": "2.11.3-17.110.40.1",
"glibc-profile-32bit": "2.11.3-17.110.40.1",
"glibc": "2.11.3-17.110.40.1"
}
]
}