CVE-2018-19591

2018-12-04T16:29:00
ID CVE-2018-19591
Type cve
Reporter cve@mitre.org
Modified 2019-03-21T20:29:00

Description

In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname via getaddrinfo() leads to the allocation of a socket descriptor that is not closed. This is related to the if_nametoindex() function.