GNU C Library: Multiple vulnerabilities Multiple vulnerabilities have been found in the GNU C Library, the worst of which may allow execution of arbitrary code. glibc 2017-06-20 2017-06-20 608698 608706 622220 local, remote 2.23-r4 2.23-r4

The GNU C library is the standard C library used by Gentoo Linux systems.

Multiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers and Qualys’ security advisory referenced below for details.

An attacker could possibly execute arbitrary code with the privileges of the process, escalate privileges or cause a Denial of Service condition.

There is no known workaround at this time.

All GNU C Library users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.23-r4" CVE-2015-5180 CVE-2016-6323 CVE-2017-1000366 Qualys Security Advisory - The Stack Clash whissi whissi