Synopsis: Moderate: glibc security and bug fix update
Advisory ID: SLSA-2013:1411-1
Issue Date: 2013-10-08
CVE Numbers: CVE-2013-4332
—
Multiple integer overflow flaws, leading to heap-based buffer overflows,
were found in glibc’s memory allocator functions (pvalloc, valloc, and
memalign). If an application used such a function, it could cause the
application to crash or, potentially, execute arbitrary code with the
privileges of the user running the application. (CVE-2013-4332)
This update also fixes the following bug:
* Prior to this update, the size of the L3 cache in certain CPUs for SMP
(Symmetric Multiprocessing) servers was not correctly detected. The
incorrect cache size detection resulted in less than optimal performance
for routines that used this information, including the memset() function.
To fix this bug, the cache size detection has been corrected and core
routines including memset() have their performance restored to expected
levels.
—
SL5
x86_64
glibc-2.5-118.el5_10.2.i686.rpm
glibc-2.5-118.el5_10.2.x86_64.rpm
glibc-common-2.5-118.el5_10.2.x86_64.rpm
glibc-debuginfo-2.5-118.el5_10.2.i386.rpm
glibc-debuginfo-2.5-118.el5_10.2.i686.rpm
glibc-debuginfo-2.5-118.el5_10.2.x86_64.rpm
glibc-debuginfo-common-2.5-118.el5_10.2.i386.rpm
glibc-devel-2.5-118.el5_10.2.i386.rpm
glibc-devel-2.5-118.el5_10.2.x86_64.rpm
glibc-headers-2.5-118.el5_10.2.x86_64.rpm
glibc-utils-2.5-118.el5_10.2.x86_64.rpm
nscd-2.5-118.el5_10.2.x86_64.rpm
i386
glibc-2.5-118.el5_10.2.i386.rpm
glibc-2.5-118.el5_10.2.i686.rpm
glibc-common-2.5-118.el5_10.2.i386.rpm
glibc-debuginfo-2.5-118.el5_10.2.i386.rpm
glibc-debuginfo-2.5-118.el5_10.2.i686.rpm
glibc-debuginfo-common-2.5-118.el5_10.2.i386.rpm
glibc-devel-2.5-118.el5_10.2.i386.rpm
glibc-headers-2.5-118.el5_10.2.i386.rpm
glibc-utils-2.5-118.el5_10.2.i386.rpm
nscd-2.5-118.el5_10.2.i386.rpm
– Scientific Linux Development Team
