CVE-2015-8778

Published: 19 April 2016

Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the size argument to the __hcreate_r function, which triggers out-of-bounds heap-memory access.

From the Ubuntu security team

Szabolcs Nagy discovered that the hcreate functions in the GNU C Library did not properly check its size argument, leading to an integer overflow. An attacker could use to cause a denial of service (application crash) or possibly execute arbitrary code.

Priority

CVSS 3 base score: 9.8

Status

Package	Release	Status
eglibc Launchpad, Ubuntu, Debian	Upstream	Needed





	Ubuntu 16.04 ESM (Xenial Xerus)	Does not exist
	Ubuntu 14.04 ESM (Trusty Tahr)	Released (2.19-0ubuntu6.8)
glibc Launchpad, Ubuntu, Debian	Upstream	Needed





	Ubuntu 16.04 ESM (Xenial Xerus)	Not vulnerable (2.23-0ubuntu1)
	Ubuntu 14.04 ESM (Trusty Tahr)	Does not exist
	Patches: Upstream: https://sourceware.org/git/gitweb.cgi?p=glibc.git;h=2f5c1750558fe64bac361f52d6827ab1bcfe52bc

References

Bugs

https://sourceware.org/bugzilla/show_bug.cgi?id=18240

Join the discussion

Canonical is offering Extended Security Maintenance

Canonical is offering Ubuntu Extended Security Maintenance (ESM) for security fixes and essential packages.

Find out more about ESM ›