1
Candidate: CVE-2015-8985
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8985
6
The pop_fail_stack function in the GNU C Library (aka glibc or libc6)
7
allows context-dependent attackers to cause a denial of service (assertion
8
failure and application crash) via vectors related to extended regular
12
sbeattie> PoC testcase in upstream bug report
13
sbeattie> no upstream fix as of 2017-12-19
15
https://sourceware.org/bugzilla/show_bug.cgi?id=21163
16
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=779392
22
upstream_eglibc: needed
23
precise_eglibc: ignored (reached end-of-life)
24
precise/esm_eglibc: deferred (2017-12-19)
25
trusty_eglibc: deferred (2017-12-19)
26
vivid/ubuntu-core_eglibc: DNE
27
vivid/stable-phone-overlay_eglibc: DNE
36
upstream_glibc: needed
38
precise/esm_glibc: DNE
40
vivid/ubuntu-core_glibc: ignored (reached end-of-life)
41
vivid/stable-phone-overlay_glibc: ignored (reached end-of-life)
42
xenial_glibc: deferred (2017-12-19)
43
yakkety_glibc: ignored (reached end-of-life)
44
zesty_glibc: ignored (reached end-of-life)
45
artful_glibc: deferred (2017-12-19)
46
bionic_glibc: deferred (2017-12-19)
47
devel_glibc: deferred (2017-12-19)