← volver
CVE-2016-3706

CVE-2016-3706

EPSS 5.8%
Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in the GNU C Library (aka glibc or libc6) allows remote attackers to cause a denial of service (crash) via vectors involving hostent conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4458.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://lists.opensuse.org/opensuse-updates/2016-06/msg00030.htmlhttp://lists.opensuse.org/opensuse-updates/2016-07/msg00039.htmlhttps://source.android.com/security/bulletin/2017-12-01https://sourceware.org/bugzilla/show_bug.cgi?id=20010https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=4ab2ab03d4351914ee53248dc5aef4a8c88ff8b9http://www-01.ibm.com/support/docview.wss?uid=swg21995039http://www.securityfocus.com/bid/102073http://www.securityfocus.com/bid/88440