CVE 2016-6323
The makecontext function in the GNU C Library (aka glibc or libc6) before 2.25 creates execution contexts incompatible with the unwinder on ARM EABI (32-bit) platforms, which might allow context-dependent attackers to cause a denial of service (hang), as demonstrated by applications compiled using gccgo, related to backtrace generation.
Related bugs and status
CVE-2016-6323 (Candidate) is related to these bugs:
Bug #1571456: id crashed with SIGSEGV in sock_eq()
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Ubuntu) | High | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | GLibC | Unknown | Unknown | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Fedora) | Undecided | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Debian) | Unknown | Fix Released | ||
1571456 | id crashed with SIGSEGV in sock_eq() | glibc (Ubuntu Xenial) | High | Fix Released |
Bug #1577460: mkinitramfs --help > Core dumped
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1577460 | mkinitramfs --help > Core dumped | glibc (Ubuntu) | Critical | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | glibc (Ubuntu Xenial) | High | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | Ubuntu on IBM z Systems | High | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | util-linux (Ubuntu) | High | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | util-linux (Ubuntu Xenial) | High | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | glibc (Ubuntu Yakkety) | Undecided | Fix Released | ||
1577460 | mkinitramfs --help > Core dumped | util-linux (Ubuntu Yakkety) | High | Fix Released |
Bug #1614966: libc has broken cos implementation
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1614966 | libc has broken cos implementation | glibc (Ubuntu) | Undecided | Fix Released | ||
1614966 | libc has broken cos implementation | glibc (Ubuntu Xenial) | Undecided | Fix Released |
Bug #1630302: Multi-threaded luaJIT application hangs; apparent deadlock in GLIBC
Summary | In | Importance | Status | |||
---|---|---|---|---|---|---|
1630302 | Multi-threaded luaJIT application hangs; apparent deadlock in GLIBC | glibc (Ubuntu) | High | Fix Released | ||
1630302 | Multi-threaded luaJIT application hangs; apparent deadlock in GLIBC | glibc (Ubuntu Xenial) | High | Fix Released | ||
1630302 | Multi-threaded luaJIT application hangs; apparent deadlock in GLIBC | The Ubuntu-power-systems project | Undecided | Fix Released |
See the
CVE page on Mitre.org
for more details.