QwikSec

Security Database

CVE

CWE

Training

CVE-2016-6323

Published: Oct 7, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

The makecontext function in the GNU C Library (aka glibc or libc6) before 2.25 creates execution contexts incompatible with the unwinder on ARM EABI (32-bit) platforms, which might allow context-dependent attackers to cause a denial of service (hang), as demonstrated by applications compiled using gccgo, related to backtrace generation.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

FEDORA-2016-87dde780b8

vendor-advisory

x_refsource_FEDORA

vdb-entry

x_refsource_BID

http://www-01.ibm.com/support/docview.wss?uid=swg21995039

x_refsource_CONFIRM

FEDORA-2016-5f050a0a6d

vendor-advisory

x_refsource_FEDORA

https://sourceware.org/bugzilla/show_bug.cgi?id=20435

x_refsource_CONFIRM

https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Bh=9e2ff6c9cc54c0b4402b8d49e4abe7000fde7617

x_refsource_CONFIRM

vendor-advisory

x_refsource_GENTOO

FEDORA-2016-57cba655d5

vendor-advisory

x_refsource_FEDORA

[oss-security] 20160818 CVE-2016-6323: Missing unwind information on ARM EABI (32-bit) causes backtrace generation to hang

mailing-list

x_refsource_MLIST

openSUSE-SU-2016:2443

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.