A vulnerability was reported in Glibc. A remote or local user can execute arbitrary code on the target system.
A remote or local user can send specially crafted data to trigger a stack overflow in the getaddrinfo() function in the glibc DNS client resolver code ('resolv/nss_dns') and execute arbitrary code on the target system. The code will run with the privileges of the target application using the glibc library.
Various applications may be affected, including ssh, sudo, and curl.