The nameserver caching daemon (nscd), when processing a request for netgroup lookup, may crash due to a double-free, potentially resulting in degraded service or Denial of Service on the local system (CVE-2021-27645). SRPM: glibc-2.32-15.mga8
i586: glibc-2.32-15.mga8.i586.rpm glibc-devel-2.32-15.mga8.i586.rpm glibc-doc-2.32-15.mga8.noarch.rpm glibc-i18ndata-2.32-15.mga8.i586.rpm glibc-profile-2.32-15.mga8.i586.rpm glibc-static-devel-2.32-15.mga8.i586.rpm glibc-utils-2.32-15.mga8.i586.rpm nscd-2.32-15.mga8.i586.rpm x86_64: glibc-2.32-15.mga8.x86_64.rpm glibc-devel-2.32-15.mga8.x86_64.rpm glibc-doc-2.32-15.mga8.noarch.rpm glibc-i18ndata-2.32-15.mga8.x86_64.rpm glibc-profile-2.32-15.mga8.x86_64.rpm glibc-static-devel-2.32-15.mga8.x86_64.rpm glibc-utils-2.32-15.mga8.x86_64.rpm nscd-2.32-15.mga8.x86_64.rpm
Assignee: bugsquad => qa-bugs
Running this since day one availability. No regression so far. M8 x86_64 Plasma. Advisory pushed to SVN. Waiting for an other QA member who should test this.
CC: (none) => ouaurelienCVE: (none) => CVE-2021-27645Keywords: (none) => advisoryWhiteboard: (none) => MGA8-64-OK
Since I consider this infrastructure for us. The following 2 packages are going to be installed: - glibc-2.32-15.mga8.x86_64 - glibc-devel-2.32-15.mga8.x86_64 -- rebooted machine I've been running without issue for about an hour. Laptop - phys hardware
CC: (none) => brtians1
No regressions noticed. Validating the update.
Keywords: (none) => validated_updateCC: (none) => davidwhodgins, sysadmin-bugs
You beat me to it, Dave. I've been running it for a couple of hours with no problems, too.
CC: (none) => andrewsfarm
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2021-0138.html
Status: NEW => RESOLVEDResolution: (none) => FIXED