168 matches found
glibc: Double free in glibc
A double-free vulnerability has been discovered in glibc GNU C Library. This flaw occurs during bracket expression parsing within the regcomp function, specifically when a memory allocation failure takes place. Exploitation of a double-free vulnerability can lead to memory corruption, which could...
glibc: Double free in glibc
A double-free vulnerability has been discovered in glibc GNU C Library. This flaw occurs during bracket expression parsing within the regcomp function, specifically when a memory allocation failure takes place. Exploitation of a double-free vulnerability can lead to memory corruption, which could...
glibc: Double free in glibc
A double-free vulnerability has been discovered in glibc GNU C Library. This flaw occurs during bracket expression parsing within the regcomp function, specifically when a memory allocation failure takes place. Exploitation of a double-free vulnerability can lead to memory corruption, which could...
Fedora 42 : glibc (2025-6a7aa95984)
The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-6a7aa95984 advisory. This update fixes CVE-2025-8058, a low-impact security vulnerability in the regcomp function. It also includes a fix for the iconv; it no longer creates...
SUSE CVE-2025-8058
The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation...
DEBIAN-CVE-2025-8058
The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation...
AZL-68609 CVE-2025-8058 affecting package glibc for versions less than 2.38-15
The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation...
UBUNTU-CVE-2025-8058
The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free can allow buffer manipulation...
GNU C Library 安全漏洞
The GNU C Library is an open source, free C language compiler from the GNU community released under the LGPL license. A security vulnerability exists in GNU C Library versions 2.4 through 2.41, which stems from a double release in the regcomp function on certain allocation failures, which may...
PT-2025-30618
Name of the Vulnerable Software and Affected Versions GNU C Library versions 2.4 through 2.41 Description The regcomp function is subject to a double free if a previous allocation fails. This can occur due to a malloc failure or through the use of an interposed malloc that introduces allocation...
OESA-2023-1928 perl security update
Perl 5 is a highly capable, feature-rich programming language with over 30 years of development. Perl 5 runs on over 100 platforms from portables to mainframes and is suitable for both rapid prototyping and large scale development projects. Security Fixes: In Perl before 5.38.2, Sparseunipropstri...
OESA-2023-1927 perl security update
Perl 5 is a highly capable, feature-rich programming language with over 30 years of development. Perl 5 runs on over 100 platforms from portables to mainframes and is suitable for both rapid prototyping and large scale development projects. Security Fixes: In Perl before 5.38.2, Sparseunipropstri...
OESA-2023-1926 perl security update
Perl 5 is a highly capable, feature-rich programming language with over 30 years of development. Perl 5 runs on over 100 platforms from portables to mainframes and is suitable for both rapid prototyping and large scale development projects. Security Fixes: In Perl before 5.38.2, Sparseunipropstri...
The vulnerability in the SParse_uniprop_string function of the regcomp.c file in the Perl programming language interpreter allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the SParseunipropstring function in the regcomp.c file of the Perl interpreter is related to the execution of operations outside of the buffer. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the...
Code injection
In Perl before 5.38.2, Sparseunipropstring in regcomp.c can write to unallocated space because a property name associated with a \p... regular expression construct is mishandled. The earliest affected version is 5.30.0...
OSV-2023-889 Heap-double-free in regcomp
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=62529 Crash type: Heap-double-free Crash state: regcomp fileregcomp load1...
PT-2023-36028 · Git +1 · File
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash type identified as Heap-double-free. The crash state involves functions such as regcomp, file regcomp, and load 1. No...
OSV-2023-505 UNKNOWN WRITE in regcomp
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60010 Crash type: UNKNOWN WRITE Crash state: regcomp fileregcomp load1...
SUSE CVE-2010-4051
The regcomp implementation in the GNU C Library aka glibc or libc6 through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service application crash via a regular expression containing adjacent bounded repetitions that bypass the intended REDUPMAX...
SUSE CVE-2010-4052
Stack consumption vulnerability in the regcomp implementation in the GNU C Library aka glibc or libc6 through 2.11.3, and 2.12.x through 2.12.2, allows context-dependent attackers to cause a denial of service resource exhaustion via a regular expression containing adjacent repetition operators, a...