Updated glibc packages are available to fix a buffer overflow in the resolver.
The GNU C library package, glibc, contains standard libraries used by multiple programs on the system. A read buffer overflow vulnerability exists in the glibc resolver code in versions of glibc up to and including 2.2.5. The vulnerability is triggered by DNS packets larger than 1024 bytes and can cause applications to crash. In addition to this, several non-security related bugs have been fixed, the majority for the Itanium (IA64) platform. All CentOS Linux Advanced Server users are advised to upgrade to these errata packages which contain a patch to correct this vulnerability.