| Max CVSS | 7.5 | Min CVSS | 6.9 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2018-6551 | 7.5 |
The malloc implementation in the GNU C Library (aka glibc or libc6), from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZE_MAX and could return a pointer to a heap re
|
24-08-2020 - 17:37 | 02-02-2018 - 14:29 | |
| CVE-2018-6485 | 7.5 |
An integer overflow in the implementation of the posix_memalign in memalign functions in the GNU C Library (aka glibc or libc6) 2.26 and earlier could cause these functions to return a pointer to a heap area that is too small, potentially leading to
|
24-08-2020 - 17:37 | 01-02-2018 - 14:29 | |
| CVE-2018-1000001 | 7.2 |
In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before the destination buffer leading to a buffer underflow and potential code execution.
|
03-10-2019 - 00:03 | 31-01-2018 - 14:29 | |
| CVE-2017-1000408 | 7.2 |
A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LD_HWCAP_MASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
|
03-10-2019 - 00:03 | 01-02-2018 - 04:29 | |
| CVE-2017-1000409 | 6.9 |
A buffer overflow in glibc 2.5 (released on September 29, 2006) and can be triggered through the LD_LIBRARY_PATH environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.
|
04-04-2019 - 11:29 | 01-02-2018 - 04:29 |