Total vulnerabilities in the database
Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.18 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of AF_INET6 address results. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1914.
| Software | From | Fixed in |
|---|---|---|
| gnu / glibc | 2.1.2 | 2.1.2.x |
| gnu / glibc | 2.11 | 2.11.x |
| gnu / glibc | 2.0.5 | 2.0.5.x |
| gnu / glibc | 2.0.6 | 2.0.6.x |
| gnu / glibc | 2.10.1 | 2.10.1.x |
| gnu / glibc | 2.1.1 | 2.1.1.x |
| gnu / glibc | 2.17 | 2.17.x |
| gnu / glibc | 2.14 | 2.14.x |
| gnu / glibc | 2.0.3 | 2.0.3.x |
| gnu / glibc | 2.0 | 2.0.x |
| gnu / glibc | 2.13 | 2.13.x |
| gnu / glibc | 2.1.1.6 | 2.1.1.6.x |
| gnu / glibc | 2.1 | 2.1.x |
| gnu / glibc | 2.1.9 | 2.1.9.x |
| gnu / glibc | 2.12.1 | 2.12.1.x |
| gnu / glibc | 2.0.1 | 2.0.1.x |
| gnu / glibc | - | 2.18.x |
| gnu / glibc | 2.14.1 | 2.14.1.x |
| gnu / glibc | 2.11.2 | 2.11.2.x |
| gnu / glibc | 2.0.4 | 2.0.4.x |
| gnu / glibc | 2.0.2 | 2.0.2.x |
| gnu / glibc | 2.16 | 2.16.x |
| gnu / glibc | 2.11.3 | 2.11.3.x |
| gnu / glibc | 2.11.1 | 2.11.1.x |
| gnu / glibc | 2.1.3 | 2.1.3.x |
| gnu / glibc | 2.15 | 2.15.x |
| gnu / glibc | 2.12.2 | 2.12.2.x |
| suse / linux_enterprise_debuginfo | 11-sp2 | 11-sp2.x |
| suse / linux_enterprise_server | 11-sp2 | 11-sp2.x |