GNU C Library: Multiple vulnerabilities

GNU C Library: Multiple vulnerabilities Multiple vulnerabilities have been found in the GNU C Library, the worst of which allows context-dependent attackers to execute arbitrary code. glibc 2017-02-19 2017-02-19 560420 560526 572416 576726 578602 local, remote 2.23-r3 2.23-r3

The GNU C library is the standard C library used by Gentoo Linux systems.

Multiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers referenced below for details.

A context-dependent attacker could possibly execute arbitrary code with the privileges of the process, disclose sensitive information, or cause a Denial of Service condition via multiple vectors.

There is no known workaround at this time.

All GNU C Library users should upgrade to the latest version:


      # emerge --sync
      # emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.23-r3"

CVE-2014-9761 CVE-2015-5277 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778 CVE-2015-8779 CVE-2016-1234 CVE-2016-3075 whissi whissi