Max CVSS | 7.8 | Min CVSS | 4.3 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2015-5180 | 5.0 |
res_query in libresolv in glibc before 2.25 allows remote attackers to cause a denial of service (NULL pointer dereference and process crash).
|
13-02-2023 - 00:50 | 27-06-2017 - 20:29 | |
CVE-2014-9402 | 7.8 |
The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive
|
13-02-2023 - 00:45 | 24-02-2015 - 15:59 | |
CVE-2017-12132 | 4.3 |
The DNS stub resolver in the GNU C Library (aka glibc or libc6) before version 2.26, when EDNS support is enabled, will solicit large UDP responses from name servers, potentially simplifying off-path DNS spoofing attacks due to IP fragmentation.
|
03-10-2019 - 00:03 | 01-08-2017 - 16:29 | |
CVE-2018-1000001 | 7.2 |
In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.
|
03-10-2019 - 00:03 | 31-01-2018 - 14:29 | |
CVE-2017-15804 | 7.5 |
The glob function in glob.c in the GNU C Library (aka glibc or libc6) before 2.27 contains a buffer overflow during unescaping of user names with the ~ operator.
|
20-06-2018 - 01:29 | 22-10-2017 - 20:29 | |
CVE-2017-15670 | 7.5 |
The GNU C Library (aka glibc or libc6) before 2.27 contains an off-by-one error leading to a heap-based buffer overflow in the glob function in glob.c, related to the processing of home directories using the ~ operator followed by a long string.
|
20-06-2018 - 01:29 | 20-10-2017 - 17:29 |