Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Stack-based buffer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long string that triggers a malloc failure and use of the alloca function.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNU C Library string/strcoll_l.c文件基于栈的缓冲区溢出漏洞
Vulnerability Description
GNU C Library(又名glibc,libc6)是一种按照LGPL许可协议发布的开源免费的C语言编译程序。 GNU C Library 2.17及之前的版本中的string/strcoll_l.c文件中的strcoll()接口当调用malloc()函数失败时,alloca函数中存在基于栈的缓冲区溢出漏洞。上下文相关的攻击者可发送较长的字符串利用该漏洞造成拒绝服务(程序崩溃)或可能执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A