The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive answer while a network name is being process.
Metrics
Affected Vendors & Products
Advisories
Source | ID | Title |
---|---|---|
![]() |
DLA-122-1 | eglibc security update |
![]() |
DSA-3169-1 | eglibc security update |
![]() |
EUVD-2014-9223 | The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Service Switch configuration is enabled, allows remote attackers to cause a denial of service (infinite loop) by sending a positive answer while a network name is being process. |
![]() |
USN-2519-1 | GNU C Library vulnerabilities |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
No history.

Status: PUBLISHED
Assigner: redhat
Published:
Updated: 2024-08-06T13:40:25.176Z
Reserved: 2014-12-17T00:00:00
Link: CVE-2014-9402

No data.

Status : Deferred
Published: 2015-02-24T15:59:02.520
Modified: 2025-04-12T10:46:40.837
Link: CVE-2014-9402


No data.