CVE-2015-7547

glibc - 'getaddrinfo' Stack Buffer Overflow (PoC)

Severity Score

8.1

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.

Múltiples desbordamientos de buffer basado en pila en las funciones (1) send_dg y (2) send_vc en la librería libresolv en la librería GNU C (también conocida como glibc o libc6) en versiones anteriores a 2.23 permiten a atacantes remotos causar una denegación de servicio (caída) o posiblemente ejecutar código arbitrario a través de una respuesta DNS manipulada que desencadenan una llamada a la función getaddrinfo con la familia de direcciones AF_UNSPEC o AF_INET6, en relación con la ejecución de "consultas duales A/AAAA DNS" y el módulo libnss_dns.so.2 NSS.

A stack-based buffer overflow was found in the way the libresolv library performed dual A/AAAA DNS queries. A remote attacker could create a specially crafted DNS response which could cause libresolv to crash or, potentially, execute code with the permissions of the user running the library. Note: this issue is only exposed when libresolv is called from the nss_dns NSS service module.

Many Cisco devices such as Cisco RV340, Cisco RV340W, Cisco RV345, Cisco RV345P, Cisco RV260, Cisco RV260P, Cisco RV260W, Cisco 160, and Cisco 160W suffer from having hard-coded credentials, known GNU glibc, known BusyBox, and IoT Inspector identified vulnerabilities.

*Credits: N/A

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2015-09-29 CVE Reserved
2016-02-16 CVE Published
2016-02-16 First Exploit
2024-03-19 EPSS Updated
2024-08-06 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-121: Stack-based Buffer Overflow

CAPEC

References (84)

URL	Tag	Source
http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow	X_refsource_confirm
http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html	X_refsource_misc
http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html	X_refsource_misc
http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html	X_refsource_misc
http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html	X_refsource_misc
http://seclists.org/fulldisclosure/2019/Sep/7	Mailing List
http://seclists.org/fulldisclosure/2021/Sep/0	Mailing List
http://seclists.org/fulldisclosure/2022/Jun/36	Mailing List
http://support.citrix.com/article/CTX206991	X_refsource_confirm
http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow	X_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en	X_refsource_confirm
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html	X_refsource_confirm
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html	X_refsource_confirm
http://www.securityfocus.com/bid/83265	Vdb Entry
http://www.securitytracker.com/id/1035020	Vdb Entry
http://www.vmware.com/security/advisories/VMSA-2016-0002.html	X_refsource_confirm
https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released	Third Party Advisory
https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released	Third Party Advisory
https://bto.bluecoat.com/security-advisory/sa114	Third Party Advisory
https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html	X_refsource_misc
https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858	Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917	X_refsource_confirm
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722	X_refsource_confirm
https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes	X_refsource_confirm
https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01	X_refsource_misc
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161	Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10150	Third Party Advisory
https://seclists.org/bugtraq/2019/Sep/7	Mailing List
https://security.netapp.com/advisory/ntap-20160217-0002	X_refsource_confirm
https://sourceware.org/bugzilla/show_bug.cgi?id=18665	Issue Tracking
https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html	Third Party Advisory
https://support.lenovo.com/us/en/product_security/len_5450	X_refsource_confirm
https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17	X_refsource_misc
https://www.kb.cert.org/vuls/id/457759	Third Party Advisory
https://www.tenable.com/security/research/tra-2017-08	X_refsource_misc

URL	Date	SRC
https://www.exploit-db.com/exploits/39454	2024-08-06
https://www.exploit-db.com/exploits/40339	2024-08-06
https://github.com/fjserna/CVE-2015-7547	2016-02-16
https://github.com/cakuzo/CVE-2015-7547	2016-02-17
https://github.com/Stick-U235/CVE-2015-7547-Research	2022-10-29
https://github.com/t0r0t0r0/CVE-2015-7547	2016-02-22
https://github.com/babykillerblack/CVE-2015-7547	2016-02-21
https://github.com/Amilaperera12/Glibc-Vulnerability-Exploit-CVE-2015-7547	2020-05-12
https://github.com/miracle03/CVE-2015-7547-master	2019-06-04
https://github.com/bluebluelan/CVE-2015-7547-proj-master	2016-11-11

URL	Date	SRC
http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html	2023-02-12

URL	Date	SRC
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html	2023-02-12
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html	2023-02-12
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html	2023-02-12
http://marc.info/?l=bugtraq&m=145596041017029&w=2	2023-02-12
http://marc.info/?l=bugtraq&m=145672440608228&w=2	2023-02-12
http://marc.info/?l=bugtraq&m=145690841819314&w=2	2023-02-12
http://marc.info/?l=bugtraq&m=145857691004892&w=2	2023-02-12
http://marc.info/?l=bugtraq&m=146161017210491&w=2	2023-02-12
http://rhn.redhat.com/errata/RHSA-2016-0175.html	2023-02-12
http://rhn.redhat.com/errata/RHSA-2016-0176.html	2023-02-12
http://rhn.redhat.com/errata/RHSA-2016-0225.html	2023-02-12
http://rhn.redhat.com/errata/RHSA-2016-0277.html	2023-02-12
http://ubuntu.com/usn/usn-2900-1	2023-02-12
http://www.debian.org/security/2016/dsa-3480	2023-02-12
http://www.debian.org/security/2016/dsa-3481	2023-02-12
https://access.redhat.com/articles/2161461	2016-02-19
https://bugzilla.redhat.com/show_bug.cgi?id=1293532	2016-02-19
https://security.gentoo.org/glsa/201602-02	2023-02-12
https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html	2023-02-12
https://access.redhat.com/security/cve/CVE-2015-7547	2016-02-19

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Debian Search vendor "Debian"		Debian Linux Search vendor "Debian" for product "Debian Linux"				8.0 Search vendor "Debian" for product "Debian Linux" and version "8.0"		-		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				12.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "12.04"		lts		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				14.04 Search vendor "Canonical" for product "Ubuntu Linux" and version "14.04"		lts		Affected
Canonical Search vendor "Canonical"		Ubuntu Linux Search vendor "Canonical" for product "Ubuntu Linux"				15.10 Search vendor "Canonical" for product "Ubuntu Linux" and version "15.10"		-		Affected
Hp Search vendor "Hp"		Helion Openstack Search vendor "Hp" for product "Helion Openstack"				1.1.1 Search vendor "Hp" for product "Helion Openstack" and version "1.1.1"		-		Affected
Hp Search vendor "Hp"		Helion Openstack Search vendor "Hp" for product "Helion Openstack"				2.0.0 Search vendor "Hp" for product "Helion Openstack" and version "2.0.0"		-		Affected
Hp Search vendor "Hp"		Helion Openstack Search vendor "Hp" for product "Helion Openstack"				2.1.0 Search vendor "Hp" for product "Helion Openstack" and version "2.1.0"		-		Affected
Hp Search vendor "Hp"		Server Migration Pack Search vendor "Hp" for product "Server Migration Pack"				7.5 Search vendor "Hp" for product "Server Migration Pack" and version "7.5"		-		Affected
Sophos Search vendor "Sophos"		Unified Threat Management Software Search vendor "Sophos" for product "Unified Threat Management Software"				9.319 Search vendor "Sophos" for product "Unified Threat Management Software" and version "9.319"		-		Affected
Sophos Search vendor "Sophos"		Unified Threat Management Software Search vendor "Sophos" for product "Unified Threat Management Software"				9.355 Search vendor "Sophos" for product "Unified Threat Management Software" and version "9.355"		-		Affected
Suse Search vendor "Suse"		Linux Enterprise Debuginfo Search vendor "Suse" for product "Linux Enterprise Debuginfo"				11.0 Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11.0"		sp2		Affected
Suse Search vendor "Suse"		Linux Enterprise Debuginfo Search vendor "Suse" for product "Linux Enterprise Debuginfo"				11.0 Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11.0"		sp3		Affected
Suse Search vendor "Suse"		Linux Enterprise Debuginfo Search vendor "Suse" for product "Linux Enterprise Debuginfo"				11.0 Search vendor "Suse" for product "Linux Enterprise Debuginfo" and version "11.0"		sp4		Affected
Opensuse Search vendor "Opensuse"		Opensuse Search vendor "Opensuse" for product "Opensuse"				13.2 Search vendor "Opensuse" for product "Opensuse" and version "13.2"		-		Affected
Suse Search vendor "Suse"		Linux Enterprise Desktop Search vendor "Suse" for product "Linux Enterprise Desktop"				11.0 Search vendor "Suse" for product "Linux Enterprise Desktop" and version "11.0"		sp3		Affected
Suse Search vendor "Suse"		Linux Enterprise Desktop Search vendor "Suse" for product "Linux Enterprise Desktop"				11.0 Search vendor "Suse" for product "Linux Enterprise Desktop" and version "11.0"		sp4		Affected
Suse Search vendor "Suse"		Linux Enterprise Desktop Search vendor "Suse" for product "Linux Enterprise Desktop"				12 Search vendor "Suse" for product "Linux Enterprise Desktop" and version "12"		-		Affected
Suse Search vendor "Suse"		Linux Enterprise Desktop Search vendor "Suse" for product "Linux Enterprise Desktop"				12 Search vendor "Suse" for product "Linux Enterprise Desktop" and version "12"		sp1		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				11.0 Search vendor "Suse" for product "Linux Enterprise Server" and version "11.0"		sp2, lts		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				11.0 Search vendor "Suse" for product "Linux Enterprise Server" and version "11.0"		sp3		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				11.0 Search vendor "Suse" for product "Linux Enterprise Server" and version "11.0"		sp3, vmware		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				11.0 Search vendor "Suse" for product "Linux Enterprise Server" and version "11.0"		sp4		Affected
Suse Search vendor "Suse"		Linux Enterprise Server Search vendor "Suse" for product "Linux Enterprise Server"				12 Search vendor "Suse" for product "Linux Enterprise Server" and version "12"		sp1		Affected
Suse Search vendor "Suse"		Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit"				11.0 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "11.0"		sp3		Affected
Suse Search vendor "Suse"		Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit"				11.0 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "11.0"		sp4		Affected
Suse Search vendor "Suse"		Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit"				12 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "12"		-		Affected
Suse Search vendor "Suse"		Linux Enterprise Software Development Kit Search vendor "Suse" for product "Linux Enterprise Software Development Kit"				12 Search vendor "Suse" for product "Linux Enterprise Software Development Kit" and version "12"		sp1		Affected
Suse Search vendor "Suse"		Suse Linux Enterprise Server Search vendor "Suse" for product "Suse Linux Enterprise Server"				12 Search vendor "Suse" for product "Suse Linux Enterprise Server" and version "12"		-		Affected
Oracle Search vendor "Oracle"		Exalogic Infrastructure Search vendor "Oracle" for product "Exalogic Infrastructure"				1.0 Search vendor "Oracle" for product "Exalogic Infrastructure" and version "1.0"		-		Affected
Oracle Search vendor "Oracle"		Exalogic Infrastructure Search vendor "Oracle" for product "Exalogic Infrastructure"				2.0 Search vendor "Oracle" for product "Exalogic Infrastructure" and version "2.0"		-		Affected
F5 Search vendor "F5"		Big-ip Access Policy Manager Search vendor "F5" for product "Big-ip Access Policy Manager"				12.0.0 Search vendor "F5" for product "Big-ip Access Policy Manager" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Advanced Firewall Manager Search vendor "F5" for product "Big-ip Advanced Firewall Manager"				12.0.0 Search vendor "F5" for product "Big-ip Advanced Firewall Manager" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Analytics Search vendor "F5" for product "Big-ip Analytics"				12.0.0 Search vendor "F5" for product "Big-ip Analytics" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Application Acceleration Manager Search vendor "F5" for product "Big-ip Application Acceleration Manager"				12.0.0 Search vendor "F5" for product "Big-ip Application Acceleration Manager" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Application Security Manager Search vendor "F5" for product "Big-ip Application Security Manager"				12.0.0 Search vendor "F5" for product "Big-ip Application Security Manager" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Domain Name System Search vendor "F5" for product "Big-ip Domain Name System"				12.0.0 Search vendor "F5" for product "Big-ip Domain Name System" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Link Controller Search vendor "F5" for product "Big-ip Link Controller"				12.0.0 Search vendor "F5" for product "Big-ip Link Controller" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Local Traffic Manager Search vendor "F5" for product "Big-ip Local Traffic Manager"				12.0.0 Search vendor "F5" for product "Big-ip Local Traffic Manager" and version "12.0.0"		-		Affected
F5 Search vendor "F5"		Big-ip Policy Enforcement Manager Search vendor "F5" for product "Big-ip Policy Enforcement Manager"				12.0.0 Search vendor "F5" for product "Big-ip Policy Enforcement Manager" and version "12.0.0"		-		Affected
Oracle Search vendor "Oracle"		Fujitsu M10 Firmware Search vendor "Oracle" for product "Fujitsu M10 Firmware"				<= 2290 Search vendor "Oracle" for product "Fujitsu M10 Firmware" and version " <= 2290"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Desktop Search vendor "Redhat" for product "Enterprise Linux Desktop"				7.0 Search vendor "Redhat" for product "Enterprise Linux Desktop" and version "7.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Hpc Node Search vendor "Redhat" for product "Enterprise Linux Hpc Node"				7.0 Search vendor "Redhat" for product "Enterprise Linux Hpc Node" and version "7.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Hpc Node Eus Search vendor "Redhat" for product "Enterprise Linux Hpc Node Eus"				7.2 Search vendor "Redhat" for product "Enterprise Linux Hpc Node Eus" and version "7.2"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Server Search vendor "Redhat" for product "Enterprise Linux Server"				7.0 Search vendor "Redhat" for product "Enterprise Linux Server" and version "7.0"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Server Aus Search vendor "Redhat" for product "Enterprise Linux Server Aus"				7.2 Search vendor "Redhat" for product "Enterprise Linux Server Aus" and version "7.2"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Server Eus Search vendor "Redhat" for product "Enterprise Linux Server Eus"				7.2 Search vendor "Redhat" for product "Enterprise Linux Server Eus" and version "7.2"		-		Affected
Redhat Search vendor "Redhat"		Enterprise Linux Workstation Search vendor "Redhat" for product "Enterprise Linux Workstation"				7.0 Search vendor "Redhat" for product "Enterprise Linux Workstation" and version "7.0"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.9 Search vendor "Gnu" for product "Glibc" and version "2.9"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.10 Search vendor "Gnu" for product "Glibc" and version "2.10"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.10.1 Search vendor "Gnu" for product "Glibc" and version "2.10.1"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.11 Search vendor "Gnu" for product "Glibc" and version "2.11"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.11.1 Search vendor "Gnu" for product "Glibc" and version "2.11.1"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.11.2 Search vendor "Gnu" for product "Glibc" and version "2.11.2"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.11.3 Search vendor "Gnu" for product "Glibc" and version "2.11.3"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.12 Search vendor "Gnu" for product "Glibc" and version "2.12"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.12.1 Search vendor "Gnu" for product "Glibc" and version "2.12.1"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.12.2 Search vendor "Gnu" for product "Glibc" and version "2.12.2"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.13 Search vendor "Gnu" for product "Glibc" and version "2.13"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.14 Search vendor "Gnu" for product "Glibc" and version "2.14"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.14.1 Search vendor "Gnu" for product "Glibc" and version "2.14.1"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.15 Search vendor "Gnu" for product "Glibc" and version "2.15"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.16 Search vendor "Gnu" for product "Glibc" and version "2.16"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.17 Search vendor "Gnu" for product "Glibc" and version "2.17"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.18 Search vendor "Gnu" for product "Glibc" and version "2.18"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.19 Search vendor "Gnu" for product "Glibc" and version "2.19"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.20 Search vendor "Gnu" for product "Glibc" and version "2.20"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.21 Search vendor "Gnu" for product "Glibc" and version "2.21"		-		Affected
Gnu Search vendor "Gnu"		Glibc Search vendor "Gnu" for product "Glibc"				2.22 Search vendor "Gnu" for product "Glibc" and version "2.22"		-		Affected