SynopsisThe remote Fedora host is missing a security update.
DescriptionThis update for the `glibc` package addresses one moderate security vulnerability and a minor defect :
- CVE-2018-19591: A file descriptor leak in `if_nametoindex` can lead to a denial of service due to resource exhaustion when processing `getaddrinfo` calls with crafted host names. Reported by Guido Vranken.
- Parallel building of locales led to nondeterminism in the RPM build process. (RHBZ#1652228)
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
SolutionUpdate the affected glibc package.