CVE-2016-6323
First published: Fri Oct 07 2016(Updated: )
Last updated 24 July 2024
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| GNU C Library (glibc) | <=2.24 | |
| SUSE Linux | =13.2 | |
| Fedora | =23 | |
| Fedora | =24 | |
| Fedora | =25 | |
| debian/glibc | 2.31-13+deb11u11 2.31-13+deb11u10 2.36-9+deb12u9 2.36-9+deb12u7 2.40-7 2.41-3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2016/08/18/12
- https://sourceware.org/bugzilla/show_bug.cgi?id=20435
- https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=9e2ff6c9cc54c0b4402b8d49e4abe7000fde7617
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LVWSAZVBTLALXF4SCBPDV3FY6J22DXLZ/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KTXSOVCRDGBIB4WCIDAGYYUBESXZ4IGK/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WO7IMEYWZ2WTXGGMZBWWSDCUMFN63XOB/
- http://lists.opensuse.org/opensuse-updates/2016-10/msg00009.html
- http://www.securityfocus.com/bid/92532
- http://www-01.ibm.com/support/docview.wss?uid=swg21995039
- https://security.gentoo.org/glsa/201706-19
- https://launchpad.net/bugs/cve/CVE-2016-6323
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KTXSOVCRDGBIB4WCIDAGYYUBESXZ4IGK/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LVWSAZVBTLALXF4SCBPDV3FY6J22DXLZ/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WO7IMEYWZ2WTXGGMZBWWSDCUMFN63XOB/
- https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=9e2ff6c9cc54c0b4402b8d49e4abe7000fde7617
- https://security-tracker.debian.org/tracker/CVE-2016-6323
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-6323
- https://nvd.nist.gov/vuln/detail/CVE-2016-6323
- https://ubuntu.com/security/CVE-2016-6323
Frequently Asked Questions
What is the severity of CVE-2016-6323?
CVE-2016-6323 has a medium severity rating, primarily impacting ARM EABI (32-bit) platforms.
How do I fix CVE-2016-6323?
You can fix CVE-2016-6323 by upgrading to glibc version 2.25 or later.
Which versions of glibc are affected by CVE-2016-6323?
CVE-2016-6323 affects glibc versions prior to 2.25, specifically up to 2.24.
What kind of attacks are possible with CVE-2016-6323?
CVE-2016-6323 may allow context-dependent attackers to cause a denial of service, leading to system hangs.
On which platforms does CVE-2016-6323 have an impact?
CVE-2016-6323 specifically affects ARM EABI (32-bit) platforms using the affected versions of glibc.
- agent/type
- collector/launchpad-cve
- source/Launchpad
- agent/severity
- agent/weakness
- collector/mitre-cve
- source/MITRE
- collector/usn-cve
- source/Ubuntu
- agent/references
- agent/remedy
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/trending
- agent/source
- agent/author
- agent/event
- collector/security-tracker-debian
- source/Debian
- agent/software-canonical-lookup
- agent/softwarecombine
- agent/tags
- collector/nvd-cve
- source/NVD
- agent/software-canonical-lookup-request
- collector/nvd-index
- package-manager/debian
- vendor/gnu
- canonical/gnu c library (glibc)
- version/gnu c library (glibc)/2.24
- vendor/opensuse
- canonical/suse linux
- version/suse linux/13.2
- vendor/fedoraproject
- canonical/fedora
- version/fedora/23
- version/fedora/24
- version/fedora/25