CVE-2015-8984

Published: Mar 20, 2017

Modified: Aug 6, 2024

PUBLISHED

Description

The fnmatch function in the GNU C Library (aka glibc or libc6) before 2.22 might allow context-dependent attackers to cause a denial of service (application crash) via a malformed pattern, which triggers an out-of-bounds read.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

[oss-security] 20170214 Re: Pending CVE requests for glibc

mailing-list

x_refsource_MLIST

72789

vdb-entry

x_refsource_BID

[oss-security] 20150226 CVE request: glibc: potential application crash due to overread in fnmatch

mailing-list

x_refsource_MLIST

https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=4a28f4d55a6cc33474c0792fe93b5942d81bf185

x_refsource_CONFIRM

[libc-alpha] 20150814 The GNU C Library version 2.22 is now available

mailing-list

x_refsource_MLIST

https://sourceware.org/bugzilla/show_bug.cgi?id=18032

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2015-8984

Description

Affected Products

References