VDB
WID-SEC-W-2023-0973
WID-SEC-W-2023-0973
PUBLISHED
Die GNU libc ist die Basis C Bibliothek unter Linux sowie anderen Unix-Betriebssystemen, welche die Systemaufrufe sowie Basisfunktionalität bereitstellt.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco AnyConnect Secure Mobility Solution | ||
| Cisco WebEx Node for MCS | ||
| Cisco Prime Data Center Network Manager (DCNM) | ||
| Cisco Router | ||
| Cisco TelePresence | ||
| Cisco Unified Provisioning Manager | ||
| Cisco ACE | ||
| Arista EOS | ||
| Cisco Wireless LAN Controllers | ||
| Cisco Prime Collaboration | ||
| F5 BIG-IP | ||
| Cisco IP Communicator | ||
| Cisco IronPort Security Management Appliance | ||
| Cisco WebEx | ||
| Debian Linux | ||
| Cisco Application Networking Manager | ||
| Cisco Intrusion Prevention System (IPS) | ||
| Cisco Security Manager (CSM) | ||
| Huawei OceanStor | ||
| Cisco Unified Computing System (UCS) |
Exploit Intelligence
- Glibc-Vulnerability-Exploit-CVE-2015-7547 (github-poc)
- CVE-2015-7547 initial research. (github-poc)
- loudong (github-poc)
- bluebluelan/CVE-2015-7547-proj-master (github-poc)
- PoC attack server for CVE-2015-7547 buffer overflow vulnerability in glibc DNS stub resolver (public version) (github-poc)
- PoC exploit server for CVE-2015-7547 (github-poc)
- glibc getaddrinfo stack-based buffer overflow (github-poc)
- glibc check and update in light of CVE-2015-7547 (github-poc)
- t0r0t0r0/CVE-2015-7547 (github-poc)
- test script for CVE-2015-7547 (github-poc)
…and 32 more exploits
Timeline
- Feb 16, 2016 CVE Published
- Apr 16, 2023 CVE Updated
- Apr 5, 2026 Distribution Patch
- Apr 5, 2026 Distribution Patch
- Apr 5, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2016/wid-sec-w-2023-0973.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0973 advisory
- https://www.ibm.com/support/pages/node/868550 url
- https://www.ibm.com/support/pages/node/868518 url
- https://rhn.redhat.com/errata/RHSA-2016-0225.html url
- https://rhn.redhat.com/errata/RHSA-2016-0175.html url
- https://rhn.redhat.com/errata/RHSA-2016-0176.html url
- http://www.ubuntu.com/usn/usn-2900-1/ url
- http://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17 url
- https://googleonlinesecurity.blogspot.de/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html url
- https://github.com/fjserna/CVE-2015-7547 url
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html url
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html url
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html url
- http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html url
- https://www.debian.org/security/2016/dsa-3480 url
- https://www.debian.org/security/2016/dsa-3481 url
- http://linux.oracle.com/errata/ELSA-2016-0175.html url
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160218-glibc url
- http://support.citrix.com/article/CTX206991 url
…and 11 more