glibc-2.12-1.80.AXS4.5
エラータID: AXSA:2012-899:07
リリース日:
2012/09/14 Friday - 14:36
題名:
glibc-2.12-1.80.AXS4.5
影響のあるチャネル:
Asianux Server 4 for x86_64
Asianux Server 4 for x86
Severity:
High
Description:
以下項目について対処しました。
[Security Fix]
-GNU C ライブラリの stdlibの(1)strtod,(2)strtof,(3)strtold,(4)strtod_lと 他の詳細不明な関係する関数には,長い文字列によって,複数の整数オーバーフローが存在し,サービス拒否 (アプリケーションのクラッシュ) を引き起こしたり,任意のコードを実行する可能性のある脆弱性があります。(CVE-2012-3480)
一部CVEの翻訳文はJVNからの引用になります。
http://jvndb.jvn.jp
解決策:
パッケージをアップデートしてください。
CVE:
CVE-2012-3480
Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.
Multiple integer overflows in the (1) strtod, (2) strtof, (3) strtold, (4) strtod_l, and other unspecified "related functions" in stdlib in GNU C Library (aka glibc or libc6) 2.16 allow local users to cause a denial of service (application crash) and possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow.
追加情報:
N/A
ダウンロード:
SRPMS
- glibc-2.12-1.80.AXS4.5.src.rpm
MD5: 65c23a7bb44e7cd72da22e6ead4cf344
SHA-256: 3bc00b6ce5c422f0faf1bd577639a211249cabc5a9720ba7ec41b0bdff3acc01
Size: 15.26 MB
Asianux Server 4 for x86
- glibc-2.12-1.80.AXS4.5.i686.rpm
MD5: 89fe697e1b528737fa68e1fb06081817
SHA-256: 38a5f0bc5d75fd498b22cf9c788b0dea8abf716c8ad9158864787c75b3700723
Size: 4.32 MB - glibc-common-2.12-1.80.AXS4.5.i686.rpm
MD5: 50cff255473ce5992632351c441d4a4b
SHA-256: ab79ffd0773a96ddfd4d6a33c3c2788015a8a86793700dea6a7844ab9452705e
Size: 14.17 MB - glibc-devel-2.12-1.80.AXS4.5.i686.rpm
MD5: f4228d6c32101d8ad2b48f09b38c700d
SHA-256: 213f40c618b7ef9e6eb99211e8f65f22676e73ba529e794b883f6356848c882d
Size: 970.48 kB - glibc-headers-2.12-1.80.AXS4.5.i686.rpm
MD5: 97251e0a538830e14396203ed0846242
SHA-256: 9a1033bafb26a641c40b5f24b2f1a543c91cd7964ce22bdcdc44ae44844a6f73
Size: 608.79 kB - glibc-utils-2.12-1.80.AXS4.5.i686.rpm
MD5: f89ee41c61b6852b044d4614ba1b1392
SHA-256: 3f25f75ce69cdbc0f2039990dfb443482d44319c6ac6a11d570f737173300158
Size: 156.91 kB - nscd-2.12-1.80.AXS4.5.i686.rpm
MD5: 3c33c504eeca65e05fa9c6c8ef9485ad
SHA-256: 24b52ae8fd2f1fee48be46de0239bd8e4a3c7a36c3034ce2aa2e874343581037
Size: 206.66 kB
Asianux Server 4 for x86_64
- glibc-2.12-1.80.AXS4.5.x86_64.rpm
MD5: 7892692a5ffd8160208dcb3315e26848
SHA-256: bae5af5c4092c5967c316cbb1ae47a62822382c9cd02d7a0991d42cade254b64
Size: 3.79 MB - glibc-common-2.12-1.80.AXS4.5.x86_64.rpm
MD5: 0a0b4743040e01e2f1b03f1b417a16e8
SHA-256: 8ff0ade71710e1ad1e78f115001935fa1600308069fe0cabd3c2a2104d290069
Size: 14.18 MB - glibc-devel-2.12-1.80.AXS4.5.x86_64.rpm
MD5: 58c190ab626ab715570837ad7b164a40
SHA-256: da242b46eb191e1b5e1e97cd07b633e922a47aa1a7edee27bab280d3e09eb676
Size: 969.61 kB - glibc-headers-2.12-1.80.AXS4.5.x86_64.rpm
MD5: ac05b47c38489a7dba59e6c837b927b1
SHA-256: 86ec0a179c9a0cf8d9725b48b94ab9eafa94be2c18cf5331c7cf0f2673ffeb6c
Size: 600.31 kB - glibc-utils-2.12-1.80.AXS4.5.x86_64.rpm
MD5: c3c1744fcff28fc3549aa87c5670abab
SHA-256: c356c5436878b32f420d399560ca6fe110262e779ea02b55959edadaec6a3f25
Size: 155.09 kB - nscd-2.12-1.80.AXS4.5.x86_64.rpm
MD5: af150ce944cf4e6a43650623ca3fe79d
SHA-256: e1a362929a468ba0e24aca248867691122f6e9aa2c3b093cb6dd608b660dd311
Size: 207.59 kB - glibc-2.12-1.80.AXS4.5.i686.rpm
MD5: 89fe697e1b528737fa68e1fb06081817
SHA-256: 38a5f0bc5d75fd498b22cf9c788b0dea8abf716c8ad9158864787c75b3700723
Size: 4.32 MB - glibc-devel-2.12-1.80.AXS4.5.i686.rpm
MD5: f4228d6c32101d8ad2b48f09b38c700d
SHA-256: 213f40c618b7ef9e6eb99211e8f65f22676e73ba529e794b883f6356848c882d
Size: 970.48 kB