Multiple vulnerabilities have been found in glibc, the worst of which could allow remote attackers to execute arbitrary code.
|Package||sys-libs/glibc on all architectures|
|Affected versions||< 2.25-r11|
|Unaffected versions||>= 2.25-r11|
glibc is a package that contains the GNU C library.
Multiple vulnerabilities have been discovered in glibc. Please review the CVE identifiers referenced below for details.
An attacker could possibly execute arbitrary code, escalate privileges, cause a Denial of Service condition, or have other unspecified impacts.
There is no known workaround at this time.
All glibc users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=sys-libs/glibc-2.25-r11"