Launchpad CVE tracker

CVE 2015-1781

Buffer overflow in the gethostbyname_r and other unspecified NSS functions in the GNU C Library (aka glibc or libc6) before 2.22 allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via a crafted DNS response, which triggers a call with a misaligned buffer.

Related bugs and status

CVE-2015-1781 (Candidate) is related to these bugs:

Bug #1546457: libc6 2.15-0ubuntu10.13 doesn't mark reboot-required

		In	Importance	Status
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	glibc (Ubuntu)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	eglibc (Ubuntu Precise)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	eglibc (Ubuntu Trusty)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	glibc (Ubuntu Wily)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://www.securitytra...
MISC: http://www.securityfoc...
MISC: http://www.debian.org/...
MISC: http://lists.fedorapro...
MISC: https://security.gento...
MISC: https://rhn.redhat.com...
MISC: http://lists.opensuse....
MISC: http://lists.opensuse....
MISC: http://www.ubuntu.com/...
MISC: http://www.ubuntu.com/...
MISC: https://www.sourceware...
MISC: http://www.oracle.com/...
MISC: https://sourceware.org...
MISC: https://sourceware.org...

Launchpad.net

CVE 2015-1781

Related bugs and status

Related bugs

References