CVE-2018-19591

Source
Severity Medium
Remote Yes
Type Denial of service
Description
A file descriptor leak has been found in glibc <= 2.28, in the if_nametoindex() function, when processing getaddrinfo() calls with crafted interface names.
Group Package Affected Fixed Severity Status Ticket
AVG-831 glibc 2.28-5 2.29-1 Medium Fixed
AVG-830 lib32-glibc 2.28-5 2.29-1 Medium Fixed
References
https://seclists.org/oss-sec/2018/q4/186
https://sourceware.org/bugzilla/show_bug.cgi?id=23927
https://sourceware.org/git/gitweb.cgi?p=glibc.git;a=commitdiff;h=ce6ba630dbc96f49eb1f30366aa62261df4792f9