The GNU C Library (glibc, libc6) is an open source, free C compiler released under the LGPL license. version 2.34 of the GNU C Library (aka glibc) contains a security vulnerability that stems from a data validation issue in the affected version of the library, iconvdata/iso-2022-jp-3.c’s iconv( ) in the affected repository has a data validation issue. An attacker could exploit this vulnerability to force iconv( ) to emit a false 0 character accompanied by an internal state reset via crafted ISO-2022-JP-3 data. In some iconv() use cases, this could compromise data integrity.
CPE | Name | Operator | Version |
---|---|---|---|
gnu c library | eq | 2.34 |