Glibc@- Security Vulnerabilities and Issues — Glibc@- CVE List

Lucene search

GnuGlibc-

4 matches found

CVE•added 2019/07/15 4:15 a.m.•232 views

CVE-2019-1010022

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. NOTE: Upstream comments indicate "this is...

9.8CVSS9.5AI score0.00145EPSS

CVE•added 2019/07/15 4:15 a.m.•209 views

CVE-2019-1010023

GNU Libc current is affected by: Re-mapping current loaded library with malicious ELF file. The impact is: In worst case attacker may evaluate privileges. The component is: libld. The attack vector is: Attacker sends 2 ELF files to victim and asks to run ldd on it. ldd execute code. NOTE: Upstream ...

8.8CVSS7.8AI score0.00703EPSS

CVE•added 2019/07/15 4:15 a.m.•194 views

CVE-2019-1010025

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthread_created thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability.

5.3CVSS5.5AI score0.00235EPSS

CVE•added 2019/07/15 4:15 a.m.•192 views

CVE-2019-1010024

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass ASLR using cache of thread stack and heap. The component is: glibc. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

5.3CVSS5.5AI score0.00375EPSS