Problem Description:
Multiple vulnerabilities was discovered and fixed in glibc:
Multiple integer overflows in the strfmon implementation in
the GNU C Library (aka glibc or libc6) 2.10.1 and earlier allow
context-dependent attackers to cause a denial of service (memory
consumption or application crash) via a crafted format string, as
demonstrated by a crafted first argument to the money_format function
in PHP, a related issue to CVE-2008-1391 (CVE-2009-4880).
Problem Description:
Multiple vulnerabilities was discovered and fixed in glibc:
Multiple untrusted search path vulnerabilities in elf/dl-object.c in
certain modified versions of the GNU C Library (aka glibc or libc6),
including glibc-2.5-49.el5_5.6 and glibc-2.12-1.7.el6_0.3 in Red Hat
Enterprise Linux, allow local users to gain privileges via a crafted
dynamic shared object (DSO) in a subdirectory of the current working
directory during execution of a (1) setuid or (2) setgid program that
has in (a) RPATH or (b) RUNPATH. NOTE: this issue exists because
Problem Description:
Multiple vulnerabilities was discovered and fixed in glibc:
The addmntent function in the GNU C Library (aka glibc or libc6) 2.13
and earlier does not report an error status for failed attempts to
write to the /etc/mtab file, which makes it easier for local users
to trigger corruption of this file, as demonstrated by writes from
a process with a small RLIMIT_FSIZE value, a different vulnerability
than CVE-2010-0296 (CVE-2011-1089).
4.2 Unspecified Behaviour of system() and ``!''
4.2.1. The system() Function
system(), does not invoke /bin/sh to run the commands, as does the C
Standard Library function of the same name. Rather, it uses the program
specified in the Vim internal option 'shell'. The full details of how
system() works can be found in the Vim Manual:
``system({expr} [, {input}]) *system()* *E677*
[...]
Affected Software:
FreeBSD lines: 6,7
NetBSD 4
another systems what use this functions.
Standard C Library (libc, -lc) for BSD
probably some MacOS version
Advisory URL:
http://securityreason.com/achievement_securityalert/53
Vendor: http://www.php.net
Problem type : local
Debian-specific: no
CVE Id : CVE-2010-0015
Debian Bug : 560333
Christoph Pleger has discovered that the GNU C Library (aka glibc) and
its derivatives add information from the passwd.adjunct.byname map to
entries in the passwd map, which allows local users to obtain the
encrypted passwords of NIS accounts by calling the getpwnam function.
Debian-specific: no
CVE Id(s) : CVE-2008-1391 CVE-2009-4880, CVE-2009-4881
CVE-2010-0296 CVE-2010-0830
Debian Bug : 583908
Several vulnerabilities have been discovered in the GNU C Library (aka
glibc) and its derivatives. The Common Vulnerabilities and Exposures
project identifies the following problems:
CVE-2008-1391, CVE-2009-4880, CVE-2009-4881
