[Secure-testing-team] Bug#777197: glibc: CVE-2015-1472
Moritz Muehlenhoff
jmm at inutil.org
Fri Feb 6 07:43:37 UTC 2015
Package: glibc
Severity: grave
Tags: security
Justification: user security hole
Hi,
please see https://sourceware.org/bugzilla/show_bug.cgi?id=16618
The patch is here: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=5bd80bfe9ca0d955bfbbc002781bc7b01b6bcb06
This was introduced by https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=3f8cc204fdd0
(2.15). Since the patch was backported into wheezy, it is also
affected (while squeeze is not).
Cheers,
Moritz
More information about the Secure-testing-team
mailing list