[manjaro-security] [arch-security] [ASA-201602-14] glibc: multiple issues
Jonathon Fernyhough
jonathon at manjaro.org
Wed Feb 17 14:55:02 CET 2016
On 17/02/16 13:00, Levente Polyak wrote:
> Arch Linux Security Advisory ASA-201602-14
> ==========================================
>
> Severity: Critical
> Date : 2016-02-17
> CVE-ID : CVE-2015-7547 CVE-2015-8776 CVE-2015-8777 CVE-2015-8778
> CVE-2015-8779
> Package : glibc
> Type : multiple issues
> Remote : Yes
> Link : https://wiki.archlinux.org/index.php/CVE
>
> Summary
> =======
>
> The package glibc before version 2.22-4 is vulnerable to multiple issues
> including but not limited to arbitrary code execution, information
> disclosure and denial of service.
> It is advised to restart all services that may perform DNS lookups.
>
> Resolution
> ==========
>
> Upgrade to 2.22-4.
>
> # pacman -Syu "glibc>=2.22-4"
>
> The problems have been fixed upstream but no release is available yet.
>
We need to push this out to stable ASAP.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <http://lists.manjaro.org/pipermail/manjaro-security/attachments/20160217/68828ea2/attachment.pgp>
More information about the manjaro-security
mailing list