Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 502
Alerts This Week
Warning Icon 1 502

Mageia 8: MGASA-2021-0362 Critical: Glibc Integer Overflow Issue

mageia
Calendar Grey July 20, 2021
Dist Mageia Esm H88
The security notice from Mageia regarding glibc highlights a critical integer overflow vulnerability that can lead to improper memory access when handling untrusted data.
An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input (CVE-202...

Summary

An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input (CVE-2021-35942).

References

- https://bugs.mageia.org/show_bug.cgi?id=29259

- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/thread/ZT2QUZQYD5FTXCEAQNWHUQN72QRNZNYI/

- https://www.cve.org/CVERecord?id=CVE-2021-35942

Resolution

SRPMS

- 8/core/glibc-2.32-17.mga8

Severity
critical
Lowest
Low
Medium
High
Critical

Publication date: 20 Jul 2021
URL: https://advisories.mageia.org/MGASA-2021-0362.html
Type: security
CVE: CVE-2021-35942

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.