OR
     *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
     *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
     *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
     *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*
     *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*

OR
     *cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
     *cpe:2.3:o:suse:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
     *cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
     *cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*
     *cpe:2.3:o:suse:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*

http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00019.html No Types Assigned

http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00019.html Mailing List

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html No Types Assigned

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html Mailing List

http://rhn.redhat.com/errata/RHSA-2015-0327.html No Types Assigned

http://rhn.redhat.com/errata/RHSA-2015-0327.html Third Party Advisory

http://www.debian.org/security/2016/dsa-3480 No Types Assigned

http://www.debian.org/security/2016/dsa-3480 Third Party Advisory

http://www.securityfocus.com/bid/73038 No Types Assigned

http://www.securityfocus.com/bid/73038 Third Party Advisory, VDB Entry

http://www.ubuntu.com/usn/USN-2985-1 No Types Assigned

http://www.ubuntu.com/usn/USN-2985-1 Third Party Advisory

http://www.ubuntu.com/usn/USN-2985-2 No Types Assigned

http://www.ubuntu.com/usn/USN-2985-2 Third Party Advisory

https://bugzilla.redhat.com/show_bug.cgi?id=1165192 Exploit

https://bugzilla.redhat.com/show_bug.cgi?id=1165192 Exploit, Issue Tracking

https://security.gentoo.org/glsa/201602-02 No Types Assigned

https://security.gentoo.org/glsa/201602-02 Third Party Advisory

http://www.debian.org/security/2016/dsa-3480 [No Types Assigned]

http://www.securityfocus.com/bid/73038 [No Types Assigned]

Configuration 1
     OR
          *cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmwar

Configuration 1
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmware:*:*
Configuration 2
     OR
          *cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:* (and prev

http://www.ubuntu.com/usn/USN-2985-1

http://www.ubuntu.com/usn/USN-2985-2

https://security.gentoo.org/glsa/201602-02

http://lists.opensuse.org/opensuse-security-announce/2016-02/msg00036.html

DB_LOOKUP en nss_files/files-XXX.c en Name Service Switch (NSS) en GNU C Library (también conocida como glibc o libc6) 2.21 y versiones anteriores no comprueba correctamente si un archivo está abierto, lo que permite a atacantes remotos causar una denegación de servicio (bucle infinito) realizando una búsqueda en una base de datos mientras itera sobre ella, lo que desencadena que el puntero al archivo sea reestablecido.

DB_LOOKUP en nss_files/files-XXX.c en Name Service Switch (NSS) en GNU C Library (también conocido como glibc o libc6) 2.21 y anteriores no comprueba correctamente si un fichero esté abierto, lo que permite a atacantes remotos causar una denegación de servicio (bucle infinito) mediante la realización de una búsqueda mientras la base de datos es iterada sobre la base de datos, lo que provoca que el puntero del fichero se reconfigure.

DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up while the database is iterated over the database, which triggers the file pointer to be reset.

DB_LOOKUP in nss_files/files-XXX.c in the Name Service Switch (NSS) in GNU C Library (aka glibc or libc6) 2.21 and earlier does not properly check if a file is open, which allows remote attackers to cause a denial of service (infinite loop) by performing a look-up on a database while iterating over it, which triggers the file pointer to be reset.

Configuration 1
     OR
          *cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:* (and previous)

Configuration 1
     OR
          *cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:* (and previous)
Configuration 2
     OR
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_desktop:11:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp4:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:*:*:*
          *cpe:2.3:o:novell:suse_linux_enterprise_server:11.0:sp3:*:*:*:vmwar

http://lists.opensuse.org/opensuse-security-announce/2015-08/msg00019.html

Configuration 1
     OR
          *cpe:2.3:a:gnu:glibc:2.21:*:*:*:*:*:*:* (and previous)

(AV:N/AC:L/Au:N/C:N/I:N/A:P)

CWE-17

https://bugzilla.redhat.com/show_bug.cgi?id=1165192 No Types Assigned

https://bugzilla.redhat.com/show_bug.cgi?id=1165192 Exploit

https://sourceware.org/ml/libc-alpha/2015-02/msg00617.html No Types Assigned

https://sourceware.org/ml/libc-alpha/2015-02/msg00617.html Exploit