CVE-2015-0235
EPSS 84.9%eglibc - security update
發布日:2015/1/28修改日:2026/4/28
也稱為:DEBIAN-CVE-2015-0235
描述
Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18, allows context-dependent attackers to execute arbitrary code via vectors related to the (1) gethostbyname or (2) gethostbyname2 function, aka "GHOST."
受影響套件(2)
- Debian/eglibcfrom 0, < 2.11.3-4+deb6u4
- Debian/glibcfrom 0, < 2.18-1