CVE-2015-7547
HIGH severity · CVSS 8.1 · Memory corruption
8.1CVSS HIGH
Summary
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
Impact & exploitability
Attack vectorNetwork
Attack complexityHigh
Privileges requiredNone
User interactionNone
Confidentiality impactHigh
Integrity impactHigh
Availability impactHigh
Exploit probability (EPSS)94%
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products we track (4)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Additional information
- NVD record
- http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.htmlAdvisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.htmlAdvisory