vulnerability

CentOS Linux: CVE-2015-8777: Moderate: glibc security, bug fix, and enhancement update (CESA-2017:1916)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
2	(AV:L/AC:L/Au:N/C:N/I:P/A:N)	Jan 20, 2016	Aug 28, 2019	May 25, 2023

Severity

CVSS

(AV:L/AC:L/Au:N/C:N/I:P/A:N)

Published

Jan 20, 2016

Added

Aug 28, 2019

Modified

May 25, 2023

Description

The process_envvars function in elf/rtld.c in the GNU C Library (aka glibc or libc6) before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LD_POINTER_GUARD environment variable.

Solutions

centos-upgrade-glibccentos-upgrade-glibc-commoncentos-upgrade-glibc-debuginfocentos-upgrade-glibc-debuginfo-commoncentos-upgrade-glibc-develcentos-upgrade-glibc-headerscentos-upgrade-glibc-staticcentos-upgrade-glibc-utilscentos-upgrade-nscd

References

BID-81469
DEBIAN-DSA-3480
DISA_SEVERITY-Category I
IAVM-2016-A-0053
NVD-CVE-2015-8777
REDHAT-RHSA-2017:1916

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today