Security update for glibc SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2015:0439-1 Final 1 1 2014-08-29T01:15:58Z current 2014-08-29T01:15:58Z 2014-08-29T01:15:58Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for glibc This glibc update fixes a critical privilege escalation problem and two non-security issues: * bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit that targets the problem is publicly available. (CVE-2014-5119) * bnc#892065: setenv-alloca.patch: Avoid unbound alloca in setenv. * bnc#888347: printf-multibyte-format.patch: Don't parse %s format argument as multi-byte string. Security Issues: * CVE-2014-5119 <http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119> The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). sdksp3-glibc,sledsp3-glibc,slessp3-glibc Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ Link for SUSE-SU-2015:0439-1 https://lists.suse.com/pipermail/sle-security-updates/2015-March/001271.html E-Mail link for SUSE-SU-2015:0439-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/691365 SUSE Bug 691365 https://bugzilla.suse.com/779320 SUSE Bug 779320 https://bugzilla.suse.com/791928 SUSE Bug 791928 https://bugzilla.suse.com/801246 SUSE Bug 801246 https://bugzilla.suse.com/811979 SUSE Bug 811979 https://bugzilla.suse.com/813121 SUSE Bug 813121 https://bugzilla.suse.com/819347 SUSE Bug 819347 https://bugzilla.suse.com/822210 SUSE Bug 822210 https://bugzilla.suse.com/827811 SUSE Bug 827811 https://bugzilla.suse.com/828235 SUSE Bug 828235 https://bugzilla.suse.com/828637 SUSE Bug 828637 https://bugzilla.suse.com/830268 SUSE Bug 830268 https://bugzilla.suse.com/834594 SUSE Bug 834594 https://bugzilla.suse.com/836746 SUSE Bug 836746 https://bugzilla.suse.com/839870 SUSE Bug 839870 https://bugzilla.suse.com/844309 SUSE Bug 844309 https://bugzilla.suse.com/847227 SUSE Bug 847227 https://bugzilla.suse.com/854445 SUSE Bug 854445 https://bugzilla.suse.com/863499 SUSE Bug 863499 https://bugzilla.suse.com/864081 SUSE Bug 864081 https://bugzilla.suse.com/872832 SUSE Bug 872832 https://bugzilla.suse.com/882028 SUSE Bug 882028 https://bugzilla.suse.com/882600 SUSE Bug 882600 https://bugzilla.suse.com/883217 SUSE Bug 883217 https://bugzilla.suse.com/886416 SUSE Bug 886416 https://bugzilla.suse.com/887022 SUSE Bug 887022 https://bugzilla.suse.com/888347 SUSE Bug 888347 https://bugzilla.suse.com/891843 SUSE Bug 891843 https://bugzilla.suse.com/892065 SUSE Bug 892065 https://bugzilla.suse.com/892073 SUSE Bug 892073 https://bugzilla.suse.com/894553 SUSE Bug 894553 https://bugzilla.suse.com/894556 SUSE Bug 894556 https://bugzilla.suse.com/903288 SUSE Bug 903288 https://bugzilla.suse.com/904461 SUSE Bug 904461 https://bugzilla.suse.com/906371 SUSE Bug 906371 https://bugzilla.suse.com/909053 SUSE Bug 909053 https://bugzilla.suse.com/913646 SUSE Bug 913646 https://bugzilla.suse.com/915526 SUSE Bug 915526 https://bugzilla.suse.com/916222 SUSE Bug 916222 https://bugzilla.suse.com/917072 SUSE Bug 917072 https://bugzilla.suse.com/919678 SUSE Bug 919678 https://www.suse.com/security/cve/CVE-2012-4412/ SUSE CVE CVE-2012-4412 page https://www.suse.com/security/cve/CVE-2012-6656/ SUSE CVE CVE-2012-6656 page https://www.suse.com/security/cve/CVE-2013-0242/ SUSE CVE CVE-2013-0242 page https://www.suse.com/security/cve/CVE-2013-1914/ SUSE CVE CVE-2013-1914 page https://www.suse.com/security/cve/CVE-2013-4237/ SUSE CVE CVE-2013-4237 page https://www.suse.com/security/cve/CVE-2013-4332/ SUSE CVE CVE-2013-4332 page https://www.suse.com/security/cve/CVE-2013-4357/ SUSE CVE CVE-2013-4357 page https://www.suse.com/security/cve/CVE-2013-4458/ SUSE CVE CVE-2013-4458 page https://www.suse.com/security/cve/CVE-2013-4788/ SUSE CVE CVE-2013-4788 page https://www.suse.com/security/cve/CVE-2013-7423/ SUSE CVE CVE-2013-7423 page https://www.suse.com/security/cve/CVE-2014-0475/ SUSE CVE CVE-2014-0475 page https://www.suse.com/security/cve/CVE-2014-4043/ SUSE CVE CVE-2014-4043 page https://www.suse.com/security/cve/CVE-2014-5119/ SUSE CVE CVE-2014-5119 page https://www.suse.com/security/cve/CVE-2014-6040/ SUSE CVE CVE-2014-6040 page https://www.suse.com/security/cve/CVE-2014-7817/ SUSE CVE CVE-2014-7817 page https://www.suse.com/security/cve/CVE-2014-9402/ SUSE CVE CVE-2014-9402 page https://www.suse.com/security/cve/CVE-2015-0235/ SUSE CVE CVE-2015-0235 page https://www.suse.com/security/cve/CVE-2015-1472/ SUSE CVE CVE-2015-1472 page SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP3-TERADATA SUSE Linux Enterprise Server for SAP Applications 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP3 glibc-html-2.11.3-17.72.14 glibc-info-2.11.3-17.72.14 glibc-2.11.3-17.72.14 glibc-32bit-2.11.3-17.72.14 glibc-devel-2.11.3-17.72.14 glibc-devel-32bit-2.11.3-17.72.14 glibc-i18ndata-2.11.3-17.72.14 glibc-locale-2.11.3-17.72.14 glibc-locale-32bit-2.11.3-17.72.14 nscd-2.11.3-17.72.14 glibc-locale-x86-2.11.3-17.72.14 glibc-profile-2.11.3-17.72.14 glibc-profile-32bit-2.11.3-17.72.14 glibc-profile-x86-2.11.3-17.72.14 glibc-x86-2.11.3-17.72.14 glibc-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-devel-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-devel-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-i18ndata-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-locale-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-locale-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 nscd-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Desktop 11 SP3 glibc-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-devel-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-devel-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-html-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-i18ndata-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-info-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-locale-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-locale-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-locale-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-profile-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-profile-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-profile-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 nscd-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3 glibc-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-devel-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-devel-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-html-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-i18ndata-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-info-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-locale-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-locale-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-locale-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-profile-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-profile-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-profile-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA nscd-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server 11 SP3-TERADATA glibc-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-devel-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-devel-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-html-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-i18ndata-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-info-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-locale-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-locale-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-locale-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-profile-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-profile-32bit-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-profile-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-x86-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 nscd-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Server for SAP Applications 11 SP3 glibc-html-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Software Development Kit 11 SP3 glibc-info-2.11.3-17.72.14 as a component of SUSE Linux Enterprise Software Development Kit 11 SP3 Integer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string, which triggers a heap-based buffer overflow. CVE-2012-4412 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2012-4412.html CVE-2012-4412 https://bugzilla.suse.com/779320 SUSE Bug 779320 https://bugzilla.suse.com/848783 SUSE Bug 848783 https://bugzilla.suse.com/882910 SUSE Bug 882910 https://bugzilla.suse.com/920169 SUSE Bug 920169 https://bugzilla.suse.com/920338 SUSE Bug 920338 iconvdata/ibm930.c in GNU C Library (aka glibc) before 2.16 allows context-dependent attackers to cause a denial of service (out-of-bounds read) via a multibyte character value of "0xffff" to the iconv function when converting IBM930 encoded data to UTF-8. CVE-2012-6656 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2012-6656.html CVE-2012-6656 https://bugzilla.suse.com/894556 SUSE Bug 894556 https://bugzilla.suse.com/903057 SUSE Bug 903057 Buffer overflow in the extend_buffers function in the regular expression matcher (posix/regexec.c) in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service (memory corruption and crash) via crafted multibyte characters. CVE-2013-0242 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-0242.html CVE-2013-0242 https://bugzilla.suse.com/801246 SUSE Bug 801246 https://bugzilla.suse.com/848783 SUSE Bug 848783 https://bugzilla.suse.com/882910 SUSE Bug 882910 Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of domain conversion results. CVE-2013-1914 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-1914.html CVE-2013-1914 https://bugzilla.suse.com/813121 SUSE Bug 813121 https://bugzilla.suse.com/826666 SUSE Bug 826666 https://bugzilla.suse.com/882910 SUSE Bug 882910 https://bugzilla.suse.com/941444 SUSE Bug 941444 sysdeps/posix/readdir_r.c in the GNU C Library (aka glibc or libc6) 2.18 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted (1) NTFS or (2) CIFS image. CVE-2013-4237 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-4237.html CVE-2013-4237 https://bugzilla.suse.com/834594 SUSE Bug 834594 https://bugzilla.suse.com/882910 SUSE Bug 882910 https://bugzilla.suse.com/883022 SUSE Bug 883022 Multiple integer overflows in malloc/malloc.c in the GNU C Library (aka glibc or libc6) 2.18 and earlier allow context-dependent attackers to cause a denial of service (heap corruption) via a large value to the (1) pvalloc, (2) valloc, (3) posix_memalign, (4) memalign, or (5) aligned_alloc functions. CVE-2013-4332 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-4332.html CVE-2013-4332 https://bugzilla.suse.com/1123874 SUSE Bug 1123874 https://bugzilla.suse.com/839870 SUSE Bug 839870 https://bugzilla.suse.com/882910 SUSE Bug 882910 The eglibc package before 2.14 incorrectly handled the getaddrinfo() function. An attacker could use this issue to cause a denial of service. CVE-2013-4357 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-4357.html CVE-2013-4357 https://bugzilla.suse.com/844309 SUSE Bug 844309 https://bugzilla.suse.com/883217 SUSE Bug 883217 https://bugzilla.suse.com/903057 SUSE Bug 903057 Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.18 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of AF_INET6 address results. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1914. CVE-2013-4458 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-4458.html CVE-2013-4458 https://bugzilla.suse.com/1123874 SUSE Bug 1123874 https://bugzilla.suse.com/847227 SUSE Bug 847227 https://bugzilla.suse.com/883217 SUSE Bug 883217 https://bugzilla.suse.com/941444 SUSE Bug 941444 https://bugzilla.suse.com/955181 SUSE Bug 955181 https://bugzilla.suse.com/967023 SUSE Bug 967023 https://bugzilla.suse.com/980483 SUSE Bug 980483 The PTR_MANGLE implementation in the GNU C Library (aka glibc or libc6) 2.4, 2.17, and earlier, and Embedded GLIBC (EGLIBC) does not initialize the random value for the pointer guard, which makes it easier for context-dependent attackers to control execution flow by leveraging a buffer-overflow vulnerability in an application and using the known zero value pointer guard to calculate a pointer address. CVE-2013-4788 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-4788.html CVE-2013-4788 https://bugzilla.suse.com/1123874 SUSE Bug 1123874 https://bugzilla.suse.com/830268 SUSE Bug 830268 https://bugzilla.suse.com/882910 SUSE Bug 882910 https://bugzilla.suse.com/950944 SUSE Bug 950944 The send_dg function in resolv/res_send.c in GNU C Library (aka glibc or libc6) before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended locations via a large number of requests that trigger a call to the getaddrinfo function. CVE-2013-7423 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate 2.6 AV:L/AC:H/Au:N/C:P/I:N/A:P To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2013-7423.html CVE-2013-7423 https://bugzilla.suse.com/1123874 SUSE Bug 1123874 https://bugzilla.suse.com/915526 SUSE Bug 915526 Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable. CVE-2014-0475 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-0475.html CVE-2014-0475 https://bugzilla.suse.com/887022 SUSE Bug 887022 https://bugzilla.suse.com/896776 SUSE Bug 896776 https://bugzilla.suse.com/916222 SUSE Bug 916222 The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities. CVE-2014-4043 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-4043.html CVE-2014-4043 https://bugzilla.suse.com/882600 SUSE Bug 882600 https://bugzilla.suse.com/939797 SUSE Bug 939797 Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via vectors related to the CHARSET environment variable and gconv transliteration modules. CVE-2014-5119 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-5119.html CVE-2014-5119 https://bugzilla.suse.com/892073 SUSE Bug 892073 https://bugzilla.suse.com/903057 SUSE Bug 903057 https://bugzilla.suse.com/916222 SUSE Bug 916222 GNU C Library (aka glibc) before 2.20 allows context-dependent attackers to cause a denial of service (out-of-bounds read and crash) via a multibyte character value of "0xffff" to the iconv function when converting (1) IBM933, (2) IBM935, (3) IBM937, (4) IBM939, or (5) IBM1364 encoded data to UTF-8. CVE-2014-6040 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-6040.html CVE-2014-6040 https://bugzilla.suse.com/894553 SUSE Bug 894553 https://bugzilla.suse.com/903057 SUSE Bug 903057 https://bugzilla.suse.com/916222 SUSE Bug 916222 The wordexp function in GNU C Library (aka glibc) 2.21 does not enforce the WRDE_NOCMD flag, which allows context-dependent attackers to execute arbitrary commands, as demonstrated by input containing "$((`...`))". CVE-2014-7817 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-7817.html CVE-2014-7817 https://bugzilla.suse.com/906371 SUSE Bug 906371 The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive answer while a network name is being process. CVE-2014-9402 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2014-9402.html CVE-2014-9402 https://bugzilla.suse.com/910599 SUSE Bug 910599 Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST." CVE-2015-0235 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 critical To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2015-0235.html CVE-2015-0235 https://bugzilla.suse.com/844309 SUSE Bug 844309 https://bugzilla.suse.com/913646 SUSE Bug 913646 https://bugzilla.suse.com/949238 SUSE Bug 949238 https://bugzilla.suse.com/954983 SUSE Bug 954983 The ADDW macro in stdio-common/vfscanf.c in the GNU C Library (aka glibc or libc6) before 2.21 does not properly consider data-type size during memory allocation, which allows context-dependent attackers to cause a denial of service (buffer overflow) or possibly have unspecified other impact via a long line containing wide characters that are improperly handled in a wscanf call. CVE-2015-1472 SUSE Linux Enterprise Desktop 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Desktop 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3-TERADATA:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-devel-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-i18ndata-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-info-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-locale-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-32bit-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-profile-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:glibc-x86-2.11.3-17.72.14 SUSE Linux Enterprise Server for SAP Applications 11 SP3:nscd-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-html-2.11.3-17.72.14 SUSE Linux Enterprise Software Development Kit 11 SP3:glibc-info-2.11.3-17.72.14 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2015/suse-su-20150439-1/ https://www.suse.com/security/cve/CVE-2015-1472.html CVE-2015-1472 https://bugzilla.suse.com/916222 SUSE Bug 916222 https://bugzilla.suse.com/920341 SUSE Bug 920341 https://bugzilla.suse.com/922243 SUSE Bug 922243