First published: Wed Jan 20 2016(Updated: )
A stack overflow vulnerability was found in nan* functions that could cause applications which process long strings with the nan function to crash or, potentially, execute arbitrary code. Upstream bug: <a href="https://sourceware.org/bugzilla/show_bug.cgi?id=16962">https://sourceware.org/bugzilla/show_bug.cgi?id=16962</a> CVE assignment: <a href="http://seclists.org/oss-sec/2016/q1/153">http://seclists.org/oss-sec/2016/q1/153</a>
Credit: secalert@redhat.com
Affected Software | Affected Version | How to fix |
---|---|---|
redhat/glibc | <2.23 | 2.23 |
SUSE Linux Enterprise Debuginfo | =11.0-sp2 | |
SUSE Linux Enterprise Debuginfo | =11.0-sp3 | |
SUSE Linux Enterprise Debuginfo | =11.0-sp4 | |
openSUSE openSUSE | =13.2 | |
SUSE Linux Enterprise Desktop | =11.0-sp3 | |
SUSE Linux Enterprise Desktop | =11.0-sp4 | |
SUSE Linux Enterprise Desktop | =12 | |
SUSE Linux Enterprise Desktop | =12-sp1 | |
SUSE Linux Enterprise Server | =11.0-sp2 | |
SUSE Linux Enterprise Server | =11.0-sp3 | |
Suse Linux Enterprise Server | =11.0-sp3 | |
SUSE Linux Enterprise Server | =11.0-sp4 | |
SUSE Linux Enterprise Server | =12-sp1 | |
SUSE Linux Enterprise Software Development Kit | =11.0-sp3 | |
SUSE Linux Enterprise Software Development Kit | =11.0-sp4 | |
SUSE Linux Enterprise Software Development Kit | =12 | |
SUSE Linux Enterprise Software Development Kit | =12-sp1 | |
SUSE SUSE Linux Enterprise Server | =12 | |
Fedoraproject Fedora | =23 | |
GNU glibc | <=2.22 | |
Canonical Ubuntu Linux | =12.04 | |
Canonical Ubuntu Linux | =14.04 | |
Canonical Ubuntu Linux | =15.10 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.