Launchpad CVE tracker

CVE 2015-5277

The get_contents function in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) before 2.20 might allow local users to cause a denial of service (heap corruption) or gain privileges via a long line in the NSS files database.

Related bugs and status

CVE-2015-5277 (Candidate) is related to these bugs:

Bug #1546457: libc6 2.15-0ubuntu10.13 doesn't mark reboot-required

		In	Importance	Status
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	glibc (Ubuntu)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	eglibc (Ubuntu Precise)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	eglibc (Ubuntu Trusty)	High	Fix Released
1546457	libc6 2.15-0ubuntu10.13 doesn't mark reboot-required	glibc (Ubuntu Wily)	High	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://packetstormsecu...
MISC: http://www.securitytra...
MISC: http://seclists.org/fu...
MISC: https://seclists.org/b...
MISC: http://www.securityfoc...
MISC: https://security.gento...
MISC: https://bugzilla.redha...
MISC: http://rhn.redhat.com/...
MISC: http://www.ubuntu.com/...
MISC: http://www.ubuntu.com/...
MISC: https://sourceware.org...
MISC: http://www.oracle.com/...
MISC: https://sourceware.org...

Launchpad.net

CVE 2015-5277

Related bugs and status

Related bugs

References