CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

443 matches found

Tenable Nessus•added 2021/03/10 12:0 a.m.•41 views

EulerOS Virtualization 3.0.6.6 : glibc (EulerOS-SA-2021-1477)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - On the x86-64 architecture, the GNU C Library aka glibc before 2.31 fails to ignore the LDPREFERMAP32BITEXEC environment variable...

7.1CVSS6.9AI score0.00805EPSS

Exploits0References3

Tenable Nessus•added 2021/03/10 12:0 a.m.•29 views

EulerOS Virtualization 2.9.1 : glibc (EulerOS-SA-2021-1600)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - An exploitable signed comparison vulnerability exists in the ARMv7 memcpy implementation of GNU glibc 2.30.9000. Calling memcpy on...

8.1CVSS7.2AI score0.04398EPSS

Exploits1References4

OSV•added 2021/03/05 11:2 a.m.•2 views

OESA-2021-1045 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

7.5CVSS7.2AI score0.00172EPSS

Exploits0References2

Microsoft CVE•added 2021/03/05 8:0 a.m.•2 views

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier when processing invalid multi-byte input sequences in IBM1364 IBM1371 IBM1388 IBM1390 and IBM1399 encodings fails to advance the input state which could lead to an infinite loop in applications resulting in a denial of service a different vulnerability from CVE-2016-10228.

...

5.9CVSS6.5AI score0.00378EPSS

Exploits1

OPENSUSE Linux•added 2021/02/28 12:0 a.m.•69 views

Security update for glibc (important)

openSUSE Security Update: Security update for glibc Announcement ID: openSUSE-SU-2021:0358-1 Rating: important References: 1178386 1179694 1179721 1180038 1181505 1182117 Cross-References: CVE-2019-25013 CVE-2020-27618 CVE-2020-29562 CVE-2020-29573 CVE-2021-3326 CVSS scores: CVE-2019-25013 NVD :...

7.5CVSS8.1AI score0.00805EPSS

Exploits2References6

OSV•added 2021/02/27 9:33 p.m.•7 views

OPENSUSE-SU-2021:0358-1 Security update for glibc

This update for glibc fixes the following issues: - Fix buffer overrun in EUC-KR conversion module CVE-2019-25013, bsc1182117, BZ 24973 - x86: Harden printf against non-normal long double values CVE-2020-29573, bsc1179721, BZ 26649 - gconv: Fix assertion failure in ISO-2022-JP-3 module...

7.5CVSS6.5AI score0.00805EPSS

Exploits2References12

OSV•added 2021/02/26 11:15 p.m.•0 views

DEBIAN-CVE-2020-27618

The iconv function in the GNU C Library aka glibc or libc6 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a deni...

5.5CVSS6.5AI score0.0005EPSS

Exploits1References1

OSV•added 2021/02/26 11:15 p.m.•29 views

CVE-2020-27618

5.5CVSS6.7AI score

Exploits0References7

OSV•added 2021/02/26 11:15 p.m.•1 views

UBUNTU-CVE-2020-27618

5.5CVSS6.6AI score0.0005EPSS

Exploits1References4

Prion•added 2021/02/26 11:15 p.m.•35 views

Input validation

2.1CVSS7.1AI score0.00378EPSS

Exploits1References7Affected Software3

CVE•added 2021/02/26 12:0 a.m.•361 views

CVE-2020-27618

Summary (CVE-2020-27618) The vulnerability affects the GNU C Library (glibc) iconv input handling. When processing invalid multi-byte input sequences in specific IBM encodings, iconv may fail to advance the input state, potentially causing an infinite loop and a denial of service. This behavior i...

5.5CVSS6.5AI score0.0005EPSS

Exploits1References7Affected Software1

Debian CVE•added 2021/02/26 12:0 a.m.•40 views

CVE-2020-27618

5.5CVSS6.3AI score0.0005EPSS

Exploits1

RedHat Linux•added 2021/02/02 12:12 p.m.•2 views

glibc: buffer over-read in iconv when processing invalid multi-byte input sequences in the EUC-KR encoding

A flaw was found in glibc. When processing input in the EUC-KR encoding, an invalid input sequence could cause glibc to read beyond the end of a buffer, resulting in a segmentation fault. The highest threat from this vulnerability is to system availability...

7.1CVSS6.8AI score0.00805EPSS

Exploits0References4

RedhatCVE•added 2021/01/28 8:56 p.m.•47 views

CVE-2021-3326

A flaw was found in glibc's iconv functionality. This flaw allows an attacker capable of supplying a crafted sequence of characters to an application using iconv to convert from ISO-2022-JP-3 to cause an assertion failure. The highest threat from this vulnerability is to system availability...

7.5CVSS1.1AI score0.00172EPSS

Exploits0References3

CNVD•added 2021/01/28 12:0 a.m.•6 views

GNU C Library Denial of Service Vulnerability (CNVD-2021-26204)

The GNU C Library glibc is an open-source, free, easy-to-download C compiler released under the LGPL license. A denial of service vulnerability exists in GNU C Library version 2.32 and earlier. The vulnerability stems from the iconv function in the GNU C Library failing to assert and aborting a...

7.5CVSS9.1AI score0.00172EPSS

Exploits0References1

OSV•added 2021/01/27 8:15 p.m.•1 views

DEBIAN-CVE-2021-3326

The iconv function in the GNU C Library aka glibc or libc6 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service...

7.5CVSS6.8AI score0.00172EPSS

Exploits0References1