What Are You Looking For?

Sign Up

Package        : gnulib
Version        : 20140202+stable-2+deb8u1
CVE ID         : CVE-2018-17942
Debian Bug     : 910757

Ben Pfaff discovered that the convert_to_decimal function in the GNU
Portability Library contains a heap-based buffer overflow because memory
is not allocated for a trailing '\0' character during %f processing.

For Debian 8 "Jessie", this problem has been fixed in version
20140202+stable-2+deb8u1.

We recommend that you upgrade your gnulib packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Debian LTS: DLA-1543-1: gnulib security update

October 11, 2018
Ben Pfaff discovered that the convert_to_decimal function in the GNU Portability Library contains a heap-based buffer overflow because memory is not allocated for a trailing '\0' c...

Summary

We recommend that you upgrade your gnulib packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


Severity
Package : gnulib
Version : 20140202+stable-2+deb8u1
CVE ID : CVE-2018-17942
Debian Bug : 910757

Related News

GNOME Linux Systems Exposed to RCE Attacks Via File Downloads

Oct 9, 2023

Here's What You Need to Know about the Upcoming Curl Security Patches

Oct 10, 2023

Latest Release of EuroLinux Desktop – What Will We Find in Version 9.1?

Apr 2, 2023

Important Fix for c-ares DoS Bug Released

Jun 22, 2023

News

Advisories

HOWTOs

Features

Empowering MSPs with Straightforward Linux Device Management
A Complete Guide to Torrenting Safely in 2024
Cloud Security Basics for Small Businesses
Scanning and Defending Networks with Nmap
CISA Issues Urgent Warning Over Active Exploitation of Looney Tunables glibc Bug

About Us

Powered By

Footer Logo