Gentoo Websites Logo
Go to: Gentoo Home Documentation Forums Lists Bugs Planet Store Wiki Get Gentoo!

Bug 635118 (CVE-2017-15804)

Summary: <sys-libs/glibc-2.25-r9: glob function contains a buffer overflow during unescaping of user names with the ~ operator
Product: Gentoo Security Reporter: Aleksandr Wagner (Kivak) <alwag>
Component: VulnerabilitiesAssignee: Gentoo Security <security>
Severity: normal    
Priority: Normal    
Version: unspecified   
Hardware: All   
OS: Linux   
Whiteboard: A3 [glsa+ cve]
Package list:
Runtime testing required: ---
Bug Depends on: 637140, 646492    
Bug Blocks:    

Description Aleksandr Wagner (Kivak) 2017-10-22 22:29:45 UTC
CVE-2017-15804 (

The glob function in glob.c in the GNU C Library (aka glibc or libc6) before 2.27 contains a buffer overflow during unescaping of user names with the ~ operator. 

Comment 1 Andreas K. Hüttel archtester gentoo-dev 2017-10-25 22:00:29 UTC
Patch added to gentoo/2.25 and gentoo/2.26 branch
Comment 2 Larry the Git Cow gentoo-dev 2017-10-27 23:30:35 UTC
The bug has been referenced in the following commit(s):

commit d93339d7f5bfe90901a8c6921d1c221b54c8302a
Author:     Andreas K. Hüttel <>
AuthorDate: 2017-10-27 23:30:07 +0000
Commit:     Andreas K. Hüttel <>
CommitDate: 2017-10-27 23:30:19 +0000

    sys-libs/glibc: Revision bump to 2.25 patchlevel 12, unkeyworded so far
    Resolves CVE-2017-15670, CVE-2017-15804, CVE-2016-6261
    Package-Manager: Portage-2.3.13, Repoman-2.3.4

 sys-libs/glibc/Manifest             |   1 +
 sys-libs/glibc/glibc-2.25-r9.ebuild | 154 ++++++++++++++++++++++++++++++++++++
 2 files changed, 155 insertions(+)}
Comment 3 Andreas K. Hüttel archtester gentoo-dev 2017-11-29 12:01:51 UTC
All vulnerable versions are masked. No further cleanup (toolchain package). 
Nothing to do for toolchain here anymore.
Comment 4 GLSAMaker/CVETool Bot gentoo-dev 2018-04-04 01:55:26 UTC
This issue was resolved and addressed in
 GLSA 201804-02 at
by GLSA coordinator Aaron Bauman (b-man).