163 matches found
CVE-2016-4429
CVE-2016-4429: In glibc, a stack-based buffer overflow in sunrpc/clnt_udp.c:clntudp_call can be triggered by a flood of crafted ICMP/UDP packets, enabling a remote attacker to cause a denial of service (crash) and possibly other impact. Connected docs confirm the issue as a buffer overflow in the...
CVE-2017-16997
Summary: CVE-2017-16997 affects the GNU C Library (glibc) versions 2.19–2.26, where elf/dl-load.c mishandles RPATH/RUNPATH containing $ORIGIN for privileged (setuid/AT_SECURE) programs, allowing local privilege escalation via a Trojan horse library in the current working directory. The root cause...
CVE-2019-1010025
CVE-2019-1010025 affects the GNU C Library (glibc) Current, describing a mitigation bypass in which an attacker may guess heap addresses of pthread_created threads. The vendor notes that ASLR bypass itself is not a vulnerability. The entry indicates a MEDIUM base impact (CVSS v3.0: 5.3) with no c...
CVE-2019-1010024
CVE-2019-1010024 affects GNU Libc (glibc). The description in the initial document states a mitigation bypass with the impact that an attacker may bypass ASLR by leveraging the cache of thread stack and heap. Upstream and some vendor notes indicate this is treated as a non-security bug and not a ...
CVE-2017-12132
Summary : CVE-2017-12132 affects the GNU C Library (glibc) DNS stub resolver, enabling off-path DNS spoofing attacks by eliciting large UDP responses when EDNS is enabled. IBM and related advisories reference this GLIBC flaw and tie it to affected IBM hardware/software bundles. What is affected (...
CVE-2013-7423
CVE-2013-7423: in glibc, the send_dg path can cause DNS queries to be written to unintended file descriptors under load, enabling local access to sensitive information. IBM advisories confirm affected products (e.g., DataPower Gateways, QRadar/NIPS contexts) and list concrete fixes: upgrade to fi...
CVE-2018-20796
CVE-2018-20796 (glibc) : Affected: GNU C Library (glibc) up to 2.29. Root cause: check_dst_limits_calc_pos_1 in posix/regexec.c experiences Uncontrolled Recursion. Evidence from IBM/NVD entry confirms the CWE-674 Uncontrolled Recursion and the vulnerable component/file. Impact details are stated ...
CVE-2017-1000409
CVE-2017-1000409 describes a buffer overflow in the GNU C Library (glibc) version 2.5 that can be triggered via the LD_LIBRARY_PATH environment variable. The Initial Description notes the issue and that many glibc versions are not vulnerable if patched for CVE-2017-1000366, and connected sources ...
CVE-2018-11237
CVE-2018-11237: A buffer overflow in the AVX-512-optimized mempcpy implementation (__mempcpy_avx512_no_vzeroupper) of glibc (2.27 and earlier). The overflow occurs when copying data beyond the target buffer, as demonstrated by vulnerable mempcpy paths described in public advisories and exploits. ...
CVE-2014-9402
CVE-2014-9402 affects the GNU C Library (glibc) nss_dns getnetbyname when the DNS backend in NSS is enabled. Before version 2.21, a remote attacker can trigger an infinite loop by sending a positive answer while a network name is being processed, causing DoS. Affected: glibc with DNS NSS backend ...
CVE-2020-6096
The CVE-2020-6096 entry is supported by connected sources: the glitch is in ARMv7 memcpy() within GNU glibc (version 2.30.9000 in the description) where underflowing the third parameter num can cause a signed-compare bug, potentially writing out of bounds and enabling remote code execution. Debia...
CVE-2021-38604
CVE-2021-38604 affects glibc (GNU C Library) in librt: the mq_notify.c path mishandles NOTIFY_REMOVED data, causing a NULL pointer dereference. This vulnerability is tied to the CVE-2021-33574 fix and is observed through glibc versions up to 2.34 in the initial description, with connected advisor...
CVE-2015-1781
CVE-2015-1781 affects the GNU C Library (glibc/eglibc) NSS gethostbyname_r and related functions. A misaligned input buffer can cause a buffer overflow, leading to a crash or potentially arbitrary code execution via crafted DNS responses. Public advisories (Debian, Cloud Foundry, CentOS/RH, CNVD)...
CVE-2017-15804
CVE-2017-15804 affects the GNU C Library (glibc) glob() implementation: a buffer overflow occurs during unescaping of user names with the ~ operator in glob.c, in glibc versions before 2.27. Multiple connected advisories (e.g., ALAS2-2018-1048, CESA/CentOS notes) confirm the issue and list glibc ...
CVE-2016-1234
CVE-2016-1234 affects the glibc glob implementation prior to 2.24, where a stack-based buffer overflow occurs when GLOB_ALTDIRFUNC is used with long names. This can crash the process (DoS). Remediation: upgrade glibc to 2.24 or newer (or apply vendor-specific patches). The CVE is corroborated by ...
CVE-2015-8776
The CVE-2015-8776 issue affects the GNU C Library (glibc) strftime() function. The vulnerability, present in glibc versions before 2.23, allows context-dependent attackers to cause a denial of service (application crash) and, in some disclosures, potentially obtain sensitive information via out-o...
CVE-2015-8777
CVE-2015-8777 is a local, environment-variable–driven bypass of the glibc pointer-guarding mechanism. The flaw exists in the GNU C Library (glibc) prior to version 2.23, where the LD_POINTER_GUARD environment variable was not ignored for privileged executions, allowing a local attacker to bypass ...
CVE-2014-5119
CVE-2014-5119 is an off-by-one error in glibc’s gconv transliteration loading code (__gconv_translit_find, gconv_trans.c) that allows context-dependent attackers to crash or execute arbitrary code via crafted CHARSET environment variable input. Affected: glibc and related packages; impact: denial...
CVE-2016-3075
CVE-2016-3075 is a stack-based overflow in glibc’s nss_dns getnetbyname implementation (getnetbyname/getnetbyname_r) that can be triggered by excessively long network names, leading to stack consumption and application crash (denial of service). Connected documents identify the vulnerability as a...
CVE-2017-1000408
CVE-2017-1000408 concerns a memory leak in glibc 2.1.1 (released 1999) that can be reached and amplified via the LD_HWCAP_MASK environment variable. The description notes that many glibc versions are not vulnerable if they are patched for CVE-2017-1000366. Connected sources corroborate that the i...
CVE-2013-4458
CVE-2013-4458 describes a stack-based overflow in glibc's getaddrinfo (sysdeps/posix/getaddrinfo.c) that can cause DoS via a hostname or IP that yields many AF_INET6 results. Concrete tie-ins exist: CVE-2016-3706 notes this vulnerability exists due to an incomplete fix for CVE-2013-4458, and Debi...
CVE-2014-9761
The CVE-2014-9761 issue affects the GNU C Library (glibc) prior to 2.23. It involves stack-based buffer overflows in the nan, nanf, and nanl functions caused by long arguments, which could lead to denial of service or potentially arbitrary code execution. Mitigation in the provided documents reco...
CVE-2017-15670
CVE-2017-15670 affects glibc (libc6) before 2.27. It is a heap-based buffer overflow in glob.c triggered by processing home directories with the ~ operator followed by a long string. Multiple connected documents confirm the vulnerability class and affected component. Remediation in the disclosed ...
CVE-2019-7309
CVE-2019-7309 affects the GNU C Library (glibc) memcmp on x32 where the RDX MSB is mishandled, causing memcmp to incorrectly return 0 (inputs equal) through glibc 2.29. The IBM bulletin for IBM Robotic Process Automation for Cloud Pak lists CVE-2019-7309 among vulnerabilities and instructs updati...
CVE-2014-7817
CVE-2014-7817 affects the GLIBC wordexp function (glibc) where WRDE_NOCMD was not enforced, allowing context-dependent local attackers to execute arbitrary commands via input containing shell substitutions (e.g., $(...)). Public disclosures and vendor advisories (Debian/DSA-3142-1; CentOS CESA no...
CVE-2013-1914
The CVE-2013-1914 issue affects the GNU C Library (glibc) up to version 2.17, where a stack-based buffer overflow in getaddrinfo could be triggered by a crafted hostname or IP, causing remote denial of service. Public details consistently reference an incomplete fix that ties into CVE-2013-4458 a...
CVE-2015-8779
CVE-2015-8779 affects the GNU C Library (glibc). The vulnerability is a stack-based buffer overflow in the catopen() function when handling long catalog names, which can cause an application crash (DoS) or potentially allow arbitrary code execution. Affected products include glibc releases prior ...
CVE-2014-6040
The CVE-2014-6040 issue affects the GNU C Library (glibc) prior to version 2.20. The vulnerability arises in iconv when converting certain multibyte data (notably IBM933/935/937/939/1364) to UTF-8, allowing a context-dependent attacker to trigger an out-of-bounds read and crash the process, i.e.,...
CVE-2017-18269
CVE-2017-18269 affects glibc (memcpy-sse2-unaligned on i386) where the overlapping memory check can fail when the source spans the middle of the address space, producing data corruption that may lead to information disclosure, DoS, or potentially code execution. Affected versions: glibc 2.21–2.27...
CVE-2015-8778
CVE-2015-8778 affects the GNU C Library (glibc) prior to 2.23, where an integer/size argument in hcreate_r can trigger an out-of-bounds heap access, potentially causing denial of service or arbitrary code execution. Connected advisories detail that multiple products (notably glibc-containing pack...
CVE-2012-3404
CVE-2012-3404 affects the GNU C Library (glibc) in the vfprintf path (stdio-common/vfprintf.c). The issue is a miscalculation of buffer length that can bypass Fortify_SOURCE format-string protections when using positional parameters with many specifiers, enabling context-dependent DoS via a craft...
CVE-2012-3406
The CVE-2012-3406 issue concerns glibc’s vfprintf (stdio-common/vfprintf.c). It states that glibc 2.5, 2.12, and likely other versions fail to properly restrict the use of alloca when allocating the SPECS array, which can bypass FORTIFY_SOURCE format-string protection and lead to a denial of serv...
CVE-2010-3847
Glbic ld.so (GNU C Library) contains a local privilege escalation in the dynamic linker due to improper handling of the LD_AUDIT environment variable with the $ORIGIN token. A crafted DSO in an arbitrary directory can be loaded when executing a setuid/setgid binary, enabling privilege escalation....
CVE-2014-8121
CVE-2014-8121 affects the GNU C Library (glibc/eglibc) NSS backend: DB_LOOKUP in nss_files/files-XXX.c can loop indefinitely when a file is being iterated, by not properly checking if the database file is open. This can lead to a denial of service. The affected line of code is in the NSS file bac...
CVE-2015-8985
CVE-2015-8985 affects the GNU C Library (glibc). The vulnerability lies in pop_fail_stack, where an assertion failure can be triggered via vectors related to extended regular expression processing, enabling a context-dependent attacker to cause a denial of service (crash) in the affected applicat...
CVE-2013-4332
CVE-2013-4332 affects the GNU C Library (glibc) and is described in multiple IBM advisories as caused by an integer overflow in malloc-related code (malloc/malloc.c) that can overflow when a large value is passed to pvalloc, valloc, posix_memalign, memalign, or aligned_alloc. The consequence cite...
CVE-2014-0475
CVE-2014-0475 affects glibc (GNU C Library) before 2.20, enabling context-dependent attackers to bypass ForceCommand restrictions via dot-dot in locale environment variables (LC_* or LANG). Connected documents corroborate glibc/eglibc impact and reference related advisories from IBM for FlashSyst...
CVE-2021-43396
CVE-2021-43396 affects the GNU C Library (glibc) iconv implementation, specifically iconvdata/iso-2022-jp-3.c in glibc 2.34. The issue allows a crafted ISO-2022-JP-3 data sequence, paired with an internal state reset, to cause iconv() to emit a spurious '\0' character, with potential data-integri...
CVE-2014-4043
CVE-2014-4043 affects the GNU C Library (glibc) prior to 2.20. The posix_spawn_file_actions_addopen function does not copy its path argument as required by POSIX, enabling context-dependent attackers to trigger use-after-free vulnerabilities. Multiple connected advisories (EulerOS SA, Nessus summ...
CVE-2026-5450
CVE-2026-5450 affects the GNU C Library (glibc) where using the scanf family with a %mc format specifier and an explicit width greater than 1024 can trigger a one-byte heap buffer overflow in glibc versions 2.7 through 2.43. Exploitation details are not provided in the sources. Red Hat notes that...
CVE-2013-0242
CVE-2013-0242 affects the GNU C Library (glibc) in the extend_buffers() path of the regular expression matcher (regexec.c). A buffer overflow via crafted multibyte input can cause memory corruption and denial of service. Affected line items indicate it exists in glibc ≤ 2.17; multiple advisories ...
CVE-2013-7424
CVE-2013-7424 affects the GNU C Library (glibc) getaddrinfo when compiled with libidn and the AI_IDN flag, allowing context-dependent attackers to cause a denial of service (invalid free) and possibly execute arbitrary code. Affected product context in connected sources centers on glibc usage wit...
CVE-2015-1472
CVE-2015-1472 affects the GNU C Library (glibc) prior to 2.21. The ADDW macro in stdio-common/vfscanf.c can miscalculate allocation size, leading to buffer overflows in wide-character handling during wscanf, enabling context-dependent denial of service and potentially other impact. Affected compo...
CVE-2017-12133
CVE-2017-12133 affects the GNU C Library (glibc) prior to 2.26. It is a use-after-free in clntudp_call() in sunrpc/clnt_udp.c that allows remote attackers to potentially impact the target via error-path vectors. Affected products are glibc/libc6 environments prior to 2.26; remediation is to upgra...
CVE-2018-19591
Summary: CVE-2018-19591 affects the GNU C Library (glibc/libc6). In versions up to 2.28, getaddrinfo() may allocate a socket descriptor for a crafted hostname that is not closed, related to if_nametoindex(). The issue is documented across multiple sources (CVE entry and downstream advisories). Af...
CVE-2025-5702
CVE-2025-5702 : In GNU C Library (glibc) 2.39 and later, the Power10-specific strcmp optimization writes to vector registers v20–v31 without saving caller contents. This non-volatile/register handling issue can overwrite the caller’s registers and potentially alter control flow or leak input stri...
CVE-2012-0864
Summary (CVE-2012-0864) The vulnerability is in the GNU C Library (glibc) via an integer/format string flaw in the vfprintf path (stdio-common/vfprintf.c) affecting glibc 2.14 and other versions. A context-dependent attacker could bypass Fortify_SOURCE, perform format-string attacks, and write to...
CVE-2016-3706
CVE-2016-3706 is a glibc (GNU C Library) vulnerability: a stack-based buffer overflow in sysdeps/posix/getaddrinfo.c:getaddrinfo can be triggered by hostent conversion and allows remote attackers to cause a denial of service (crash). The entry notes this issue stems from an incomplete fix for CVE...
CVE-2004-0968
CVE-2004-0968 concerns glibc (catchsegv) and related scripts: in glibc 2.3.2 and earlier, local users could cause a symlink attack on temporary files and overwrite them. The issue is documented across multiple advisories (CAN-2004-0968; CAN-2004-1382; CVE-2004-1453) and modules referencing glibc ...
CVE-2011-1071
CVE-2011-1071 affects the GNU C Library (glibc) and Embedded GLIBC (EGLIBC) prior to 2.12.2, with an underlying flaw in fnmatch() that lets context-dependent attackers supply a long UTF-8 string to trigger arbitrary code execution or memory exhaustion (DoS). Affected components include glibc in m...