Strix
26.1K

CVE-2015-7547

UnknownEPSS 89.56%

Last modified

CVE-2015-7547 is a vulnerability of currently unknown severity. Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.. EPSS estimates a 89.56% chance of exploitation in the next 30 days.

Description

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.

Metrics

EPSS Probability
89.56%

99.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersionsUpdate
DebianDebian Linux8.0
CanonicalUbuntu Linux12.04
CanonicalUbuntu Linux14.04
CanonicalUbuntu Linux15.10
HpHelion Openstack1.1.1
HpHelion Openstack2.0.0
HpHelion Openstack2.1.0
HpServer Migration Pack7.5
SophosUnified Threat Management Software9.319
SophosUnified Threat Management Software9.355
SuseLinux Enterprise Debuginfo11.0Sp2
OpensuseOpensuse13.2
SuseLinux Enterprise Desktop11.0Sp3
SuseLinux Enterprise Desktop12
SuseLinux Enterprise Server11.0Sp2
SuseLinux Enterprise Server12Sp1
SuseLinux Enterprise Software Development Kit11.0Sp3
SuseLinux Enterprise Software Development Kit12
SuseSuse Linux Enterprise Server12
OracleExalogic Infrastructure1.0
OracleExalogic Infrastructure2.0
F5Big-Ip Access Policy Manager12.0.0
F5Big-Ip Advanced Firewall Manager12.0.0
F5Big-Ip Analytics12.0.0
F5Big-Ip Application Acceleration Manager12.0.0
F5Big-Ip Application Security Manager12.0.0
F5Big-Ip Domain Name System12.0.0
F5Big-Ip Link Controller12.0.0
F5Big-Ip Local Traffic Manager12.0.0
F5Big-Ip Policy Enforcement Manager12.0.0
OracleFujitsu M10 Firmware<= 2290
RedhatEnterprise Linux Desktop7.0
RedhatEnterprise Linux Hpc Node7.0
RedhatEnterprise Linux Hpc Node Eus7.2
RedhatEnterprise Linux Server7.0
RedhatEnterprise Linux Server Aus7.2
RedhatEnterprise Linux Server Eus7.2
RedhatEnterprise Linux Workstation7.0
GnuGlibc2.9
GnuGlibc2.10
GnuGlibc2.10.1
GnuGlibc2.11
GnuGlibc2.11.1
GnuGlibc2.11.2
GnuGlibc2.11.3
GnuGlibc2.12
GnuGlibc2.12.1
GnuGlibc2.12.2
GnuGlibc2.13
GnuGlibc2.14

Showing 50 of 59 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2015-7547?
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C Library (aka glibc or libc6) before 2.23 allow remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a crafted DNS response that triggers a call to the getaddrinfo function with the AF_UNSPEC or AF_INET6 address family, related to performing "dual A/AAAA DNS queries" and the libnss_dns.so.2 NSS module.
How severe is CVE-2015-7547?
Severity scoring for CVE-2015-7547 is pending analysis. The EPSS model estimates a 89.56% probability of exploitation in the next 30 days.
How do I fix CVE-2015-7547?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2015-7547?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST