Vulnerability Description
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian | Debian Linux | 8.0 |
| Canonical | Ubuntu Linux | 12.04 |
| Hp | Helion Openstack | 1.1.1 |
| Hp | Server Migration Pack | 7.5 |
| Sophos | Unified Threat Management Software | 9.319 |
| Suse | Linux Enterprise Debuginfo | 11.0 |
| Opensuse | Opensuse | 13.2 |
| Suse | Linux Enterprise Desktop | 11.0 |
| Suse | Linux Enterprise Server | 11.0 |
| Suse | Linux Enterprise Software Development Kit | 11.0 |
| Suse | Suse Linux Enterprise Server | 12 |
| Oracle | Exalogic Infrastructure | 1.0 |
| F5 | Big-Ip Access Policy Manager | 12.0.0 |
| F5 | Big-Ip Advanced Firewall Manager | 12.0.0 |
| F5 | Big-Ip Analytics | 12.0.0 |
| F5 | Big-Ip Application Acceleration Manager | 12.0.0 |
| F5 | Big-Ip Application Security Manager | 12.0.0 |
| F5 | Big-Ip Domain Name System | 12.0.0 |
| F5 | Big-Ip Link Controller | 12.0.0 |
| F5 | Big-Ip Local Traffic Manager | 12.0.0 |
Related Weaknesses (CWE)
References
- http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.h
- http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.h
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.htmlThird Party Advisory
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.htmlThird Party Advisory
- http://marc.info/?l=bugtraq&m=145596041017029&w=2
- http://marc.info/?l=bugtraq&m=145672440608228&w=2
- http://marc.info/?l=bugtraq&m=145690841819314&w=2
- http://marc.info/?l=bugtraq&m=145857691004892&w=2
- http://marc.info/?l=bugtraq&m=146161017210491&w=2
FAQ
What is CVE-2015-7547?
CVE-2015-7547 is a vulnerability with a CVSS score of 8.1 (HIGH). Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a deni...
How severe is CVE-2015-7547?
CVE-2015-7547 has been rated HIGH with a CVSS base score of 8.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2015-7547?
Check the references section above for vendor advisories and patch information. Affected products include: Debian Debian Linux, Canonical Ubuntu Linux, Hp Helion Openstack, Hp Server Migration Pack, Sophos Unified Threat Management Software.