CVE-2015-7547

Published: Feb 18, 2016Modified: May 6, 2026

8.1

Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.2 / Impact: 5.9

Source: NVD

Description

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.

Affected (68)

Products: Debian: Debian Linux · Canonical: Ubuntu Linux · Hp: Helion Openstack, Server Migration Pack · +7 more

Show all products

Debian: Debian Linux · Canonical: Ubuntu Linux · Hp: Helion Openstack, Server Migration Pack · Sophos: Unified Threat Management Software · Opensuse: Opensuse · Suse: Linux Enterprise Debuginfo, Linux Enterprise Desktop, Linux Enterprise Server, Linux Enterprise Software Development Kit, Suse Linux Enterprise Server · Oracle: Exalogic Infrastructure, Fujitsu M10 Firmware · F5: Big Ip Access Policy Manager, Big Ip Advanced Firewall Manager, Big Ip Analytics, Big Ip Application Acceleration Manager, Big Ip Application Security Manager, Big Ip Domain Name System, Big Ip Link Controller, Big Ip Local Traffic Manager, Big Ip Policy Enforcement Manager · Redhat: Enterprise Linux Desktop, Enterprise Linux Hpc Node, Enterprise Linux Hpc Node Eus, Enterprise Linux Server, Enterprise Linux Server Aus, Enterprise Linux Server Eus, Enterprise Linux Workstation · Gnu: Glibc

1 product

1 product

2 products

Server Migration Pack

Sophos

1 product

Unified Threat Management Software

Opensuse

1 product

Opensuse

Suse

5 products

Linux Enterprise Debuginfo

Linux Enterprise Desktop

Linux Enterprise Server

Linux Enterprise Software Development Kit

Suse Linux Enterprise Server

Oracle

2 products

Exalogic Infrastructure

Fujitsu M10 Firmware

9 products

Big Ip Access Policy Manager

Big Ip Advanced Firewall Manager

Big Ip Analytics

Big Ip Application Acceleration Manager

Big Ip Application Security Manager

Big Ip Domain Name System

Big Ip Link Controller

Big Ip Local Traffic Manager

Big Ip Policy Enforcement Manager

Redhat

7 products

Enterprise Linux Desktop

Enterprise Linux Hpc Node

Enterprise Linux Hpc Node Eus

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Workstation

Gnu

1 product

Glibc

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 8.0

Configuration B

3 vulnerable

Vulnerable Software	Affected Versions
Canonical Ubuntu Linux	Version 12.04
Canonical Ubuntu Linux	Version 14.04
Canonical Ubuntu Linux	Version 15.10

Configuration C

4 vulnerable

Vulnerable Software	Affected Versions
Hp Helion Openstack	Version 1.1.1
Hp Helion Openstack	Version 2.0.0
Hp Helion Openstack	Version 2.1.0
Hp Server Migration Pack	Version 7.5

Configuration D

2 vulnerable

Vulnerable Software	Affected Versions
Sophos Unified Threat Management Software	Version 9.319
Sophos Unified Threat Management Software	Version 9.355

Configuration E

18 vulnerable

Vulnerable Software	Affected Versions
Opensuse Opensuse	Version 13.2
Suse Linux Enterprise Debuginfo	Version 11.0 sp2
Suse Linux Enterprise Debuginfo	Version 11.0 sp3
Suse Linux Enterprise Debuginfo	Version 11.0 sp4
Suse Linux Enterprise Desktop	Version 11.0 sp3
Suse Linux Enterprise Desktop	Version 11.0 sp4
Suse Linux Enterprise Desktop	Version 12
Suse Linux Enterprise Desktop	Version 12 sp1
Suse Linux Enterprise Server	Version 11.0 sp2
Suse Linux Enterprise Server	Version 11.0 sp3
Suse Linux Enterprise Server	Version 11.0 sp3
Suse Linux Enterprise Server	Version 11.0 sp4
Suse Linux Enterprise Server	Version 12 sp1
Suse Linux Enterprise Software Development Kit	Version 11.0 sp3
Suse Linux Enterprise Software Development Kit	Version 11.0 sp4
Suse Linux Enterprise Software Development Kit	Version 12
Suse Linux Enterprise Software Development Kit	Version 12 sp1
Suse Suse Linux Enterprise Server	Version 12

Configuration F

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Exalogic Infrastructure	Version 1.0
Oracle Exalogic Infrastructure	Version 2.0

Configuration G

9 vulnerable

Vulnerable Software	Affected Versions
F5 Big Ip Access Policy Manager	Version 12.0.0
F5 Big Ip Advanced Firewall Manager	Version 12.0.0
F5 Big Ip Analytics	Version 12.0.0
F5 Big Ip Application Acceleration Manager	Version 12.0.0
F5 Big Ip Application Security Manager	Version 12.0.0
F5 Big Ip Domain Name System	Version 12.0.0
F5 Big Ip Link Controller	Version 12.0.0
F5 Big Ip Local Traffic Manager	Version 12.0.0
F5 Big Ip Policy Enforcement Manager	Version 12.0.0

Configuration H

1 vulnerable

Vulnerable Software	Affected Versions
Oracle Fujitsu M10 Firmware	Up to 2290

Configuration I

7 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux Desktop	Version 7.0
Redhat Enterprise Linux Hpc Node	Version 7.0
Redhat Enterprise Linux Hpc Node Eus	Version 7.2
Redhat Enterprise Linux Server	Version 7.0
Redhat Enterprise Linux Server Aus	Version 7.2
Redhat Enterprise Linux Server Eus	Version 7.2
Redhat Enterprise Linux Workstation	Version 7.0

Configuration J

21 vulnerable

Vulnerable Software	Affected Versions
Gnu Glibc	Version 2.10.1
Gnu Glibc	Version 2.10
Gnu Glibc	Version 2.11.1
Gnu Glibc	Version 2.11.2
Gnu Glibc	Version 2.11.3
Gnu Glibc	Version 2.11
Gnu Glibc	Version 2.12.1
Gnu Glibc	Version 2.12.2
Gnu Glibc	Version 2.12
Gnu Glibc	Version 2.13
Gnu Glibc	Version 2.14.1
Gnu Glibc	Version 2.14
Gnu Glibc	Version 2.15
Gnu Glibc	Version 2.16
Gnu Glibc	Version 2.17
Gnu Glibc	Version 2.18
Gnu Glibc	Version 2.19
Gnu Glibc	Version 2.20
Gnu Glibc	Version 2.21
Gnu Glibc	Version 2.22
Gnu Glibc	Version 2.9

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (150)

http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177404.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177412.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00037.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00038.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00039.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00042.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00043.html

Source: secalert@redhat.com

Third Party Advisory

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00044.html

Source: secalert@redhat.com

Third Party Advisory

http://marc.info/?l=bugtraq&m=145596041017029&w=2

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=145672440608228&w=2

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=145690841819314&w=2

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=145857691004892&w=2

Source: secalert@redhat.com

http://marc.info/?l=bugtraq&m=146161017210491&w=2

Source: secalert@redhat.com

http://packetstormsecurity.com/files/135802/glibc-getaddrinfo-Stack-Based-Buffer-Overflow.html

Source: secalert@redhat.com

http://packetstormsecurity.com/files/154361/Cisco-Device-Hardcoded-Credentials-GNU-glibc-BusyBox.html

Source: secalert@redhat.com

http://packetstormsecurity.com/files/164014/Moxa-Command-Injection-Cross-Site-Scripting-Vulnerable-Software.html

Source: secalert@redhat.com

http://packetstormsecurity.com/files/167552/Nexans-FTTO-GigaSwitch-Outdated-Components-Hardcoded-Backdoor.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2016-0175.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2016-0176.html

Source: secalert@redhat.com

Third Party Advisory

http://rhn.redhat.com/errata/RHSA-2016-0225.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2016-0277.html

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2019/Sep/7

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2021/Sep/0

Source: secalert@redhat.com

http://seclists.org/fulldisclosure/2022/Jun/36

Source: secalert@redhat.com

http://support.citrix.com/article/CTX206991

Source: secalert@redhat.com

http://ubuntu.com/usn/usn-2900-1

Source: secalert@redhat.com

Third Party Advisory

http://www.debian.org/security/2016/dsa-3480

Source: secalert@redhat.com

http://www.debian.org/security/2016/dsa-3481

Source: secalert@redhat.com

Third Party Advisory

http://www.fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow

Source: secalert@redhat.com

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160304-01-glibc-en

Source: secalert@redhat.com

http://www.oracle.com/technetwork/security-advisory/cpuapr2016v3-2985753.html

Source: secalert@redhat.com

PatchThird Party Advisory

http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Source: secalert@redhat.com

http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html

Source: secalert@redhat.com

http://www.securityfocus.com/bid/83265

Source: secalert@redhat.com

http://www.securitytracker.com/id/1035020

Source: secalert@redhat.com

http://www.vmware.com/security/advisories/VMSA-2016-0002.html

Source: secalert@redhat.com

https://access.redhat.com/articles/2161461

Source: secalert@redhat.com

Third Party Advisory

https://blogs.sophos.com/2016/02/24/utm-up2date-9-355-released/

Source: secalert@redhat.com

Third Party Advisory

https://blogs.sophos.com/2016/02/29/utm-up2date-9-319-released/

Source: secalert@redhat.com

Third Party Advisory

https://bto.bluecoat.com/security-advisory/sa114

Source: secalert@redhat.com

Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1293532

Source: secalert@redhat.com

Issue TrackingThird Party Advisory

https://googleonlinesecurity.blogspot.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html

Source: secalert@redhat.com

https://h20566.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c05028479

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04989404

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05008367

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05053211

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05073516

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05098877

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05125672

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05128937

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05130958

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05140858

Source: secalert@redhat.com

Third Party Advisory

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158380

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05176716

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05212266

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05376917

Source: secalert@redhat.com

https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722

Source: secalert@redhat.com

https://help.ecostruxureit.com/display/public/UADCO8x/StruxureWare+Data+Center+Operation+Software+Vulnerability+Fixes

Source: secalert@redhat.com

https://ics-cert.us-cert.gov/advisories/ICSA-16-103-01

Source: secalert@redhat.com

https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA40161

Source: secalert@redhat.com

Third Party Advisory

https://kc.mcafee.com/corporate/index?page=content&id=SB10150

Source: secalert@redhat.com

Third Party Advisory

https://seclists.org/bugtraq/2019/Sep/7

Source: secalert@redhat.com

https://security.gentoo.org/glsa/201602-02

Source: secalert@redhat.com

Third Party Advisory

https://security.netapp.com/advisory/ntap-20160217-0002/

Source: secalert@redhat.com

https://sourceware.org/bugzilla/show_bug.cgi?id=18665

Source: secalert@redhat.com

Issue Tracking

https://sourceware.org/ml/libc-alpha/2016-02/msg00416.html

Source: secalert@redhat.com

Mailing ListVendor Advisory

https://support.f5.com/kb/en-us/solutions/public/k/47/sol47098834.html

Source: secalert@redhat.com

Third Party Advisory

https://support.lenovo.com/us/en/product_security/len_5450

Source: secalert@redhat.com

https://www.arista.com/en/support/advisories-notices/security-advisories/1255-security-advisory-17

Source: secalert@redhat.com

https://www.exploit-db.com/exploits/39454/

Source: secalert@redhat.com

https://www.exploit-db.com/exploits/40339/

Source: secalert@redhat.com

https://www.kb.cert.org/vuls/id/457759

Source: secalert@redhat.com

https://www.tenable.com/security/research/tra-2017-08

Source: secalert@redhat.com

http://fortiguard.com/advisory/glibc-getaddrinfo-stack-overflow