vulnerability
SUSE: CVE-2017-15670: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:P/I:P/A:P) | Oct 20, 2017 | Jan 13, 2018 | Feb 4, 2022 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:P/I:P/A:P)
Published
Oct 20, 2017
Added
Jan 13, 2018
Modified
Feb 4, 2022
Description
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the ~ operator followed by a long string.
Solutions
suse-upgrade-glibcsuse-upgrade-glibc-32bitsuse-upgrade-glibc-develsuse-upgrade-glibc-devel-32bitsuse-upgrade-glibc-devel-staticsuse-upgrade-glibc-extrasuse-upgrade-glibc-htmlsuse-upgrade-glibc-i18ndatasuse-upgrade-glibc-infosuse-upgrade-glibc-langsuse-upgrade-glibc-localesuse-upgrade-glibc-locale-32bitsuse-upgrade-glibc-locale-basesuse-upgrade-glibc-locale-base-32bitsuse-upgrade-glibc-locale-x86suse-upgrade-glibc-profilesuse-upgrade-glibc-profile-32bitsuse-upgrade-glibc-profile-x86suse-upgrade-glibc-utilssuse-upgrade-glibc-x86suse-upgrade-nscd
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.