CVE-2002-1146

Name of the Vulnerable Software and Affected Versions glibc versions 2.1.3 through 2.2.5 glibc-common versions 2.1.3 through 2.2.4 glibc-devel versions 2.1.3 through 2.2.4 glibc-profile versions 2.1.3 through 2.2.4

Description The issue concerns multiple vulnerabilities in the glibc package of Red Hat Linux, which can lead to a breach of confidentiality, integrity, and availability of protected information. These vulnerabilities can be exploited remotely, potentially causing a denial of service (crash) due to a "read buffer overflow" when processing DNS responses. The estimated number of potentially affected devices worldwide is not specified.

Recommendations For glibc versions 2.1.3 through 2.2.5, consider updating to a newer version to mitigate the risk. For glibc-common versions 2.1.3 through 2.2.4, consider updating to a newer version to mitigate the risk. For glibc-devel versions 2.1.3 through 2.2.4, consider updating to a newer version to mitigate the risk. For glibc-profile versions 2.1.3 through 2.2.4, consider updating to a newer version to mitigate the risk. As a temporary workaround, consider restricting access to the vulnerable libraries to minimize the risk of exploitation.