glibc: Multiple vulnerabilities — GLSA 202107-07

Multiple vulnerabilities in glibc could result in Denial of Service.

Affected packages

sys-libs/glibc on all architectures
Affected versions < 2.33-r1
Unaffected versions >= 2.33-r1

Background

glibc is a package that contains the GNU C library.

Description

Multiple vulnerabilities have been discovered in glibc. Please review the CVE identifiers referenced below for details.

Impact

An attacker could cause a possible Denial of Service condition.

Workaround

There is no known workaround at this time.

Resolution

All glibc users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.33-r1"
 

References

Release date
July 06, 2021

Latest revision
July 06, 2021: 1

Severity
normal

Exploitable
local, remote

Bugzilla entries