Lucene search
K

452 matches found

RedHat Linux
RedHat Linux
added 2026/06/29 6:1 p.m.5 views

glibc: glibc: Heap Buffer Overflow in `scanf` with `%mc` format specifier and large width

A flaw was found in glibc GNU C Library. This vulnerability occurs when an application uses the scanf family of functions with a %mc format specifier, which is used for dynamically allocating memory for character input, and provides an explicit width greater than 1024. This specific combination c...

9.8CVSS5.9AI score0.00451EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/06/10 12:0 a.m.11 views

EulerOS 2.0 SP13 : glibc (EulerOS-SA-2026-2333)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Calling the scanf family of functions with a %mc malloc'd character match in the GNU C Library version 2.7 to version 2.43 with a format width...

9.8CVSS5.8AI score0.00451EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.17 views

EulerOS 2.0 SP11 : glibc (EulerOS-SA-2026-2243)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The iconv function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or...

7.5CVSS5.5AI score0.00357EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/06 12:0 a.m.10 views

EulerOS Virtualization 2.12.0 : glibc (EulerOS-SA-2026-2100)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Calling getnetbyaddr or getnetbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend for networks and...

7.5CVSS7.5AI score0.00564EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.25 views

RockyLinux 8 : glibc (RLSA-2026:20587)

The remote RockyLinux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:20587 advisory. glibc: glibc: Denial of Service via iconv function with specific character sets CVE-2026-4046 Tenable has extracted the preceding description block directly from...

7.5CVSS5.8AI score0.00357EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.9 views

RockyLinux 10 : glibc (RLSA-2026:19061)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19061 advisory. glibc: glibc: Incorrect DNS response parsing via crafted DNS server response CVE-2026-4437 glibc: glibc: Invalid DNS hostname returned via gethostbyadd...

7.5CVSS5.8AI score0.00292EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2026/05/28 12:0 a.m.12 views

MiracleLinux 8 : glibc-2.28-251.el8_10.37 (AXSA:2026-726:04)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-726:04 advisory. glibc: glibc: Denial of Service via iconv function with specific character sets CVE-2026-4046 Tenable has extracted the preceding description block...

7.5CVSS5.8AI score0.00357EPSS
Exploits3References4
F5 Networks
F5 Networks
added 2026/05/27 11:44 p.m.18 views

K000161455: glibc vulnerability CVE-2026-0861

Security Advisory Description Passing too large an alignment to the memalign suite of functions memalign, posixmemalign, alignedalloc in the GNU C Library version 2.30 to 2.42 may result in an integer overflow, which could consequently result in a heap corruption. Note that the attacker must have...

8.4CVSS7.4AI score0.00352EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/05/27 12:0 a.m.22 views

Oracle Linux 8 : glibc (ELSA-2026-20587)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-20587 advisory. - Add tests for CVE-2026-4437 and CVE-2026-4438 RHEL-173358 - CVE-2026-4046: Fix assertion failure in IBM1390 and IBM1399 iconv modules RHEL-162891 -...

7.5CVSS5.8AI score0.00357EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.28 views

RHEL 8 : glibc (RHSA-2026:20587)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:20587 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cach...

7.5CVSS5.9AI score0.00357EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/05/26 12:0 a.m.12 views

RHEL 10 : glibc (RHSA-2026:20594)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:20594 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cac...

7.5CVSS5.9AI score0.00357EPSS
Exploits1References6
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in glibc

When the assert function in the GNU C Library versions 2.13 to 2.40 fails, it does not allocate enough space for the assertion failure message string and size information. This may lead to a buffer overflow if the size of the message string matches the page size...

6.2CVSS6.9AI score0.00349EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.10 views

Astra Linux – Vulnerability in glibc

Calling getnetbyaddr or getnetbyaddrr with a configured nsswitch.conf that specifies the library’s DNS backend can lead to a situation where a zero-valued network is queried during operations in the GNU C Library versions 2.0 to 2.42. This could result in the leakage of stack contents to the...

7.5CVSS7AI score0.00564EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in glibc

The name server caching daemon nscd in the GNU C Library also known as glibc or libc6 versions 2.29 through 2.33 may crash when processing a request for netgroup lookup. This can potentially lead to degraded service or a Denial of Service on the local system. This issue is related to the...

2.5CVSS6.4AI score0.00374EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in glibc

A use-after-free vulnerability introduced in the glibc upstream version 2.14 was identified in the way the tilde expansion was performed. Directory paths that contained a tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a special...

7CVSS7.1AI score0.00535EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in glibc

nscd: Null pointer crash after a “notfound” response If the Name Service Cache Daemon’s nscd cache fails to add a “notfound” netgroup response to its cache, the client request may lead to a null pointer dereferencing. This flaw was introduced in glibc 2.15 when the cache was moved to nscd. This...

5.9CVSS6.7AI score0.01216EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/19 12:0 a.m.6 views

RHEL 10 : glibc (RHSA-2026:19061)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:19061 advisory. The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name...

7.5CVSS5.9AI score0.00292EPSS
Exploits2References13
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/18 8:53 p.m.17 views

Security Bulletin: glibc vulnerability

Summary Prior versions of Classic Remote Capture may include this vulnerability. Vulnerability Details CVEID:CVE-2025-15281 DESCRIPTION: Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized...

7.5CVSS6.9AI score0.00286EPSS
Exploits0Affected Software1
Wolfi
Wolfi
added 2026/05/01 7:48 p.m.14 views

GHSA-V898-XG3C-W4RJ vulnerabilities

Vulnerabilities for packages: glibc...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/05/01 7:48 p.m.19 views

CVE-2026-5450 vulnerabilities

Vulnerabilities for packages: glibc...

9.8CVSS5.8AI score0.00451EPSS
Exploits1
Rows per page
Query Builder