Vulnerability & Exploit Database

Displaying entries 1 - 10 of 17 in total

Results for: CVE-2011-1095 Back to search

ELSA-2012-0125 Moderate: Oracle Linux glibc security and bug fix update Vulnerability

  • Severity: 7
  • Published: February 14, 2012

The encode_name macro in misc/mntent_r.c in the GNU C Library (aka glibc or libc6) 2.11.1 and earlier, as used by ncpmount and mount.cifs, does not properly handle newline characters in mountpoint names, which allows local users to cause a denial of service (mtab corruption), or possibly modify mount options and gain privileges, via a cr...

VMSA-2011-0010: Service Console update for glibc (CVE-2011-1095) Vulnerability

  • Severity: 6
  • Published: July 28, 2011

locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.

VMSA-2011-0012: ESXi and ESX update to third party component glibc (CVE-2011-1095) Vulnerability

  • Severity: 6
  • Published: April 09, 2011

locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.

SUSE Linux Security Vulnerability: CVE-2011-1095 Vulnerability

  • Severity: 6
  • Published: April 09, 2011

locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.

Gentoo Linux: CVE-2011-1095: GNU C Library: Multiple vulnerabilities Vulnerability

  • Severity: 6
  • Published: April 09, 2011

locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.

Cent OS: CVE-2011-1095: CESA-2012:0125 (glibc) Vulnerability

  • Severity: 6
  • Published: April 09, 2011

locale/programs/locale.c in locale in the GNU C Library (aka glibc or libc6) before 2.13 does not quote its output, which might allow local users to gain privileges via a crafted localization environment variable, in conjunction with a program that executes a script that uses the eval function.

RHSA-2011:0413: glibc security update Vulnerability

  • Severity: 7
  • Published: April 08, 2011

The glibc packages contain the standard C libraries used by multipleprograms on the system. These packages contain the standard C and thestandard math libraries. Without these two libraries, a Linux system cannotfunction properly.The fix for CVE-2010-3847 introduced a regression in the way the dynamicloader expanded the $ORIGIN dynamic s...

ELSA-2011-0413 Important: Oracle Linux glibc security update Vulnerability

  • Severity: 7
  • Published: April 08, 2011

Multiple untrusted search path vulnerabilities in elf/dl-object.c in certain modified versions of the GNU C Library (aka glibc or libc6), including glibc-2.5-49.el5_5.6 and glibc-2.12-1.7.el6_0.3 in Red Hat Enterprise Linux, allow local users to gain privileges via a crafted dynamic shared object (DSO) in a subdirectory of the current wo...

Cent OS: CVE-2010-1674: CESA-2012:1258 (quagga) Vulnerability

  • Severity: 5
  • Published: March 29, 2011

The extended-community parser in bgpd in Quagga before 0.99.18 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a malformed Extended Communities attribute.

RHSA-2012:0125: glibc security and bug fix update Vulnerability

  • Severity: 7
  • Published: June 01, 2010

The glibc packages contain the standard C libraries used by multipleprograms on the system. These packages contain the standard C and thestandard math libraries. Without these two libraries, a Linux system cannotfunction properly.An integer overflow flaw, leading to a heap-based buffer overflow, wasfound in the way the glibc library read...