Test ID:	1.3.6.1.4.1.25623.1.1.4.2017.1619.1
Category:	SuSE Local Security Checks
Title:	SUSE: Security Advisory (SUSE-SU-2017:1619-1)
Summary:	The remote host is missing an update for the 'glibc' package(s) announced via the SUSE-SU-2017:1619-1 advisory.
Description:	Summary: The remote host is missing an update for the 'glibc' package(s) announced via the SUSE-SU-2017:1619-1 advisory. Vulnerability Insight: This update for glibc fixes the following issues: - CVE-2017-1000366: Fix a potential privilege escalation vulnerability that allowed unprivileged system users to manipulate the stack of setuid binaries to gain special privileges. [bsc#1039357] - A bug in glibc that could result in deadlocks between malloc() and fork() has been fixed. [bsc#1040043] Affected Software/OS: 'glibc' package(s) on SUSE Linux Enterprise Desktop 12-SP2, SUSE Linux Enterprise Server 12-SP2, SUSE Linux Enterprise Server for Raspberry Pi 12-SP2, SUSE Linux Enterprise Server for SAP Applications 12-SP2. Solution: Please install the updated package(s). CVSS Score: 7.2 CVSS Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2017-1000366 BugTraq ID: 99127 http://www.securityfocus.com/bid/99127 Bugtraq: 20190904 SEC Consult SA-20190904-0 :: Multiple vulnerabilities in Cisco router series RV34X, RV26X and RV16X (Google Search) https://seclists.org/bugtraq/2019/Sep/7 Debian Security Information: DSA-3887 (Google Search) http://www.debian.org/security/2017/dsa-3887 https://www.exploit-db.com/exploits/42274/ https://www.exploit-db.com/exploits/42275/ https://www.exploit-db.com/exploits/42276/ http://seclists.org/fulldisclosure/2019/Sep/7 https://security.gentoo.org/glsa/201706-19 http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt RedHat Security Advisories: RHSA-2017:1479 https://access.redhat.com/errata/RHSA-2017:1479 RedHat Security Advisories: RHSA-2017:1480 https://access.redhat.com/errata/RHSA-2017:1480 RedHat Security Advisories: RHSA-2017:1481 https://access.redhat.com/errata/RHSA-2017:1481 RedHat Security Advisories: RHSA-2017:1567 https://access.redhat.com/errata/RHSA-2017:1567 RedHat Security Advisories: RHSA-2017:1712 https://access.redhat.com/errata/RHSA-2017:1712 http://www.securitytracker.com/id/1038712
Copyright	Copyright (C) 2021 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.