QwikSec

Security Database

CVE

CWE

Training

CVE-2009-5155

Published: Feb 26, 2019

Modified: Aug 7, 2024

PUBLISHED

Description

In the GNU C Library (aka glibc or libc6) before 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows attackers to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://debbugs.gnu.org/cgi/bugreport.cgi?bug=22793

x_refsource_MISC

https://security.netapp.com/advisory/ntap-20190315-0002/

x_refsource_CONFIRM

https://debbugs.gnu.org/cgi/bugreport.cgi?bug=32806

x_refsource_MISC

https://sourceware.org/bugzilla/show_bug.cgi?id=18986

x_refsource_MISC

https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=eb04c21373e2a2885f3d52ff192b0499afe3c672

x_refsource_MISC

http://git.savannah.gnu.org/cgit/gnulib.git/commit/?id=5513b40999149090987a0341c018d05d3eea1272

x_refsource_MISC

https://debbugs.gnu.org/cgi/bugreport.cgi?bug=34238

x_refsource_MISC

https://sourceware.org/bugzilla/show_bug.cgi?id=11053

x_refsource_MISC

https://support.f5.com/csp/article/K64119434

x_refsource_CONFIRM

https://support.f5.com/csp/article/K64119434?utm_source=f5support&amp%3Butm_medium=RSS

x_refsource_CONFIRM

[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.