Security update for glibc SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2022:0330-1 Final 1 1 2022-02-04T08:29:23Z current 2022-02-04T08:29:23Z 2022-02-04T08:29:23Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for glibc This update for glibc fixes the following issues: - CVE-2021-3999: Fixed incorrect errno in getcwd (bsc#1194640) - CVE-2022-23219: Fixed buffer overflow in sunrpc clnt_create for 'unix' (bsc#1194768) - CVE-2022-23218: Fixed buffer overflow in sunrpc svcunix_create (bsc#1194770) Features added: - IBM Power 10 string operation improvements (bsc#1194785, jsc#SLE-18195) The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-SLE-15.3-2022-330,openSUSE-SLE-15.4-2022-330 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WUNMTSOEM6LU65NFICFVIHBARFG7LVO7/ E-Mail link for openSUSE-SU-2022:0330-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1194640 SUSE Bug 1194640 https://bugzilla.suse.com/1194768 SUSE Bug 1194768 https://bugzilla.suse.com/1194770 SUSE Bug 1194770 https://bugzilla.suse.com/1194785 SUSE Bug 1194785 https://www.suse.com/security/cve/CVE-2021-3999/ SUSE CVE CVE-2021-3999 page https://www.suse.com/security/cve/CVE-2022-23218/ SUSE CVE CVE-2022-23218 page https://www.suse.com/security/cve/CVE-2022-23219/ SUSE CVE CVE-2022-23219 page openSUSE Leap 15.3 glibc-2.31-150300.9.12.1 glibc-32bit-2.31-150300.9.12.1 glibc-devel-2.31-150300.9.12.1 glibc-devel-32bit-2.31-150300.9.12.1 glibc-devel-static-2.31-150300.9.12.1 glibc-devel-static-32bit-2.31-150300.9.12.1 glibc-extra-2.31-150300.9.12.1 glibc-html-2.31-150300.9.12.1 glibc-i18ndata-2.31-150300.9.12.1 glibc-info-2.31-150300.9.12.1 glibc-lang-2.31-150300.9.12.1 glibc-locale-2.31-150300.9.12.1 glibc-locale-base-2.31-150300.9.12.1 glibc-locale-base-32bit-2.31-150300.9.12.1 glibc-profile-2.31-150300.9.12.1 glibc-profile-32bit-2.31-150300.9.12.1 glibc-utils-2.31-150300.9.12.1 glibc-utils-32bit-2.31-150300.9.12.1 nscd-2.31-150300.9.12.1 glibc-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-devel-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-devel-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-devel-static-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-devel-static-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-extra-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-html-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-i18ndata-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-info-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-lang-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-locale-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-locale-base-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-locale-base-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-profile-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-profile-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-utils-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 glibc-utils-32bit-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 nscd-2.31-150300.9.12.1 as a component of openSUSE Leap 15.3 A flaw was found in glibc. An off-by-one buffer overflow and underflow in getcwd() may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to getcwd() in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system. CVE-2021-3999 openSUSE Leap 15.3:glibc-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-extra-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-html-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-i18ndata-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-info-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-lang-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:nscd-2.31-150300.9.12.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WUNMTSOEM6LU65NFICFVIHBARFG7LVO7/ https://www.suse.com/security/cve/CVE-2021-3999.html CVE-2021-3999 https://bugzilla.suse.com/1194640 SUSE Bug 1194640 https://bugzilla.suse.com/1196024 SUSE Bug 1196024 https://bugzilla.suse.com/1196389 SUSE Bug 1196389 https://bugzilla.suse.com/1199869 SUSE Bug 1199869 https://bugzilla.suse.com/1200203 SUSE Bug 1200203 The deprecated compatibility function svcunix_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies its path argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) arbitrary code execution. CVE-2022-23218 openSUSE Leap 15.3:glibc-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-extra-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-html-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-i18ndata-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-info-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-lang-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:nscd-2.31-150300.9.12.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WUNMTSOEM6LU65NFICFVIHBARFG7LVO7/ https://www.suse.com/security/cve/CVE-2022-23218.html CVE-2022-23218 https://bugzilla.suse.com/1194770 SUSE Bug 1194770 https://bugzilla.suse.com/1199869 SUSE Bug 1199869 https://bugzilla.suse.com/1200036 SUSE Bug 1200036 The deprecated compatibility function clnt_create in the sunrpc module of the GNU C Library (aka glibc) through 2.34 copies its hostname argument on the stack without validating its length, which may result in a buffer overflow, potentially resulting in a denial of service or (if an application is not built with a stack protector enabled) arbitrary code execution. CVE-2022-23219 openSUSE Leap 15.3:glibc-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-devel-static-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-extra-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-html-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-i18ndata-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-info-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-lang-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-locale-base-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-profile-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-2.31-150300.9.12.1 openSUSE Leap 15.3:glibc-utils-32bit-2.31-150300.9.12.1 openSUSE Leap 15.3:nscd-2.31-150300.9.12.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/WUNMTSOEM6LU65NFICFVIHBARFG7LVO7/ https://www.suse.com/security/cve/CVE-2022-23219.html CVE-2022-23219 https://bugzilla.suse.com/1194768 SUSE Bug 1194768 https://bugzilla.suse.com/1199869 SUSE Bug 1199869 https://bugzilla.suse.com/1200036 SUSE Bug 1200036