Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DLA-43-1 | eglibc security update |
![]() |
DSA-2976-1 | eglibc security update |
![]() |
EUVD-2014-0510 | Multiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable. |
![]() |
USN-2306-1 | GNU C Library vulnerabilities |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: debian
Published:
Updated: 2024-08-06T09:20:17.952Z
Reserved: 2013-12-19T00:00:00
Link: CVE-2014-0475

No data.

Status : Deferred
Published: 2014-07-29T14:55:05.077
Modified: 2025-04-12T10:46:40.837
Link: CVE-2014-0475


No data.