A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability.

A flaw was found in glibc in versions prior to 2.32. Pseudo-zero values are not validated causing a stack corruption due to a stack-based overflow. The highest threat from this vulnerability is to system availability.

A use-after-free vulnerability was found in glibc in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution

An out-of-bounds write vulnerability was found in glibc when handling signal trampolines on PowerPC. The backtrace function did not properly check the array bounds when storing the frame address resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability.

Fix buffer overread in regexec.c

Fix buffer overrun in EUC-KR conversion module

Fix assertion failure in ISO-2022-JP-3 module

Fix infinite loops in iconv

Fix infinite loops in iconv

Fix infinite loops in iconv

Fix infinite loops in iconv

Fix infinite loops in iconv

Fix infinite loops in iconv

Check __libc_enable_secure before honoring LD_PREFER_MAP_32BIT_EXEC

https://access.redhat.com/security/cve/CVE-2021-27645

https://access.redhat.com/security/cve/CVE-2021-35942

https://access.redhat.com/security/cve/CVE-2021-33574

https://access.redhat.com/security/cve/CVE-2021-33574

https://access.redhat.com/security/cve/CVE-2021-33574

https://access.redhat.com/security/cve/CVE-2021-33574

Off-by-one buffer overflow/underflow in getcwd()

Buffer overflow in sunrpc clnt_create for "unix"

Buffer overflow in sunrpc svcunix_create

Necessary patch for glibc-RHEL-2434.patch

A flaw was found in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with SUCCESS=continue or SUCCESS=merge.

Necessary patch for glibc-RHEL-2422.patch.

A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the nss_gethostbyname2_r and nss_getcanonname_r hooks without implementing the nss*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

nscd: Stack-based buffer overflow in netgroup cache

nscd: Null pointer crashes after notfound response

nscd: Null pointer crashes after notfound response

nscd: netgroup cache assumes NSS callback uses in-buffer strings