vulnerability

Red Hat: CVE-2015-8777: Moderate: glibc security, bug fix, and enhancement update (RHSA-2017:1916)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:N/I:P/A:N)	2016-01-20	2017-08-03	2021-03-03

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:P/A:N)

Published

2016-01-20

Added

2017-08-03

Modified

2021-03-03

Description

The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable.

Solution(s)

redhat-upgrade-glibcredhat-upgrade-glibc-commonredhat-upgrade-glibc-debuginforedhat-upgrade-glibc-debuginfo-commonredhat-upgrade-glibc-develredhat-upgrade-glibc-headersredhat-upgrade-glibc-staticredhat-upgrade-glibc-utilsredhat-upgrade-nscd

References

BID-81469
DEBIAN-DLA-316-1
DEBIAN-DSA-3480
DISA_SEVERITY-Category I
GENTOO-GLSA-201702-11
IAVM-2016-A-0053
NVD-CVE-2015-8777
REDHAT-RHSA-2017:1916
SECTRACK-1034811
SUSE-SUSE-SU-2016:0470
SUSE-SUSE-SU-2016:0471
SUSE-SUSE-SU-2016:0472
SUSE-SUSE-SU-2016:0473
UBUNTU-USN-2985-1
UBUNTU-USN-2985-2

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today