VulnerableCode Package Details - pkg:alpm/archlinux/glibc@2.25-4

Search for packages

Package details: pkg:alpm/archlinux/glibc@2.25-4

Essentials
History (4)

purl	pkg:alpm/archlinux/glibc@2.25-4

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-4xqz-mqku-aaad	glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causing them to alias, potentially resulting in arbitrary code execution. Please note that additional hardening changes have been made to glibc to prevent manipulation of stack and heap memory but these issues are not directly exploitable, as such they have not been given a CVE. This affects glibc 2.25 and earlier.	CVE-2017-1000366

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:12.418219+00:00	Arch Linux Importer	Fixing	VCID-4xqz-mqku-aaad	https://security.archlinux.org/AVG-307	36.0.0
2024-09-18T02:01:22.496987+00:00	Arch Linux Importer	Fixing	VCID-4xqz-mqku-aaad	https://security.archlinux.org/AVG-307	34.0.1
2024-01-31T12:09:58.231449+00:00	Arch Linux Importer	Fixing	VCID-4xqz-mqku-aaad	https://security.archlinux.org/AVG-307	34.0.0rc2
2024-01-03T22:27:32.855173+00:00	Arch Linux Importer	Fixing	VCID-4xqz-mqku-aaad	https://security.archlinux.org/AVG-307	34.0.0rc1