CVE-2014-8121

DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up on a database while iterating over it, which triggers the file pointer to be reset.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00019.html	Mailing List
http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html	Mailing List
http://rhn.redhat.com/errata/RHSA-2015-0327.html	Third Party Advisory
http://www.debian.org/security/2016/dsa-3480	Third Party Advisory
http://www.securityfocus.com/bid/73038	Third Party Advisory VDB Entry
http://www.ubuntu.com/usn/USN-2985-1	Third Party Advisory
http://www.ubuntu.com/usn/USN-2985-2	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1165192	Exploit Issue Tracking
https://security.gentoo.org/glsa/201602-02	Third Party Advisory
https://sourceware.org/ml/libc-alpha/2015-02/msg00617.html	Exploit

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3::::::
	cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp4::::::
	cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3::::::
	cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3::::vmware::*
	cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp4::::::

Configuration 2 (hide)

cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*

Configuration 3 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::*

History

No history.

Information

Published : 2015-03-27 14:59

Updated : 2024-02-04 18:35

NVD link : CVE-2014-8121

Mitre link : CVE-2014-8121

CVE.ORG link : CVE-2014-8121

JSON object : View

Products Affected

gnu

glibc

suse

suse_linux_enterprise_desktop
suse_linux_enterprise_server

canonical

ubuntu_linux

CWE

CWE-17

DEPRECATED: Code

{"id": "CVE-2014-8121", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-03-27T14:59:03.353", "references": [{"url": "http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00019.html", "tags": ["Mailing List"], "source": "secalert@redhat.com"}, {"url": "http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html", "tags": ["Mailing List"], "source": "secalert@redhat.com"}, {"url": "http://rhn.redhat.com/errata/RHSA-2015-0327.html", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2016/dsa-3480", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securityfocus.com/bid/73038", "tags": ["Third Party Advisory", "VDB Entry"], "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-2985-1", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-2985-2", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1165192", "tags": ["Exploit", "Issue Tracking"], "source": "secalert@redhat.com"}, {"url": "https://security.gentoo.org/glsa/201602-02", "tags": ["Third Party Advisory"], "source": "secalert@redhat.com"}, {"url": "https://sourceware.org/ml/libc-alpha/2015-02/msg00617.html", "tags": ["Exploit"], "source": "secalert@redhat.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-17"}]}], "descriptions": [{"lang": "en", "value": "DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up on a database while iterating over it, which triggers the file pointer to be reset."}, {"lang": "es", "value": "DB_LOOKUP en nss_files/files-XXX.c en Name Service Switch (NSS) en GNU C Library (tambi\u00e9n conocida como glibc o libc6) 2.21 y versiones anteriores no comprueba correctamente si un archivo est\u00e1 abierto, lo que permite a atacantes remotos causar una denegaci\u00f3n de servicio (bucle infinito) realizando una b\u00fasqueda en una base de datos mientras itera sobre ella, lo que desencadena que el puntero al archivo sea reestablecido."}], "lastModified": "2023-02-13T00:43:11.447", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F4BC592E-17CC-4DD4-8B2C-CFD99383649C"}, {"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7A8195F-8126-47B7-8664-CF1EBF194BC6"}, {"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7F622F0E-8D17-47E8-8F3C-A640C21544E9"}, {"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*", "vulnerable": true, "matchCriteriaId": "103582CB-029E-4201-B391-897B49BE8DDD"}, {"criteria": "cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9252BDA9-EC9D-49C7-8276-B3099CA75E05"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "57CAD5CA-C7C1-4567-8E5B-FCA4DA4D516D", "versionEndIncluding": "2.21"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "B6B7CAD7-9D4E-4FDB-88E3-1E583210A01F"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*", "vulnerable": true, "matchCriteriaId": "B5A6F2F3-4894-4392-8296-3B8DD2679084"}, {"criteria": "cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E88A537F-F4D0-46B9-9E37-965233C2A355"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}