CVE-2014-5119

EPSS 21.5%

eglibc - security update

發布日:2014/8/29修改日:2026/4/28

也稱為:DEBIAN-CVE-2014-5119

描述

Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via vectors related to the CHARSET environment variable and gconv transliteration modules.

受影響套件(2)

Debian/eglibcfrom 0, < 2.13-38+deb7u4
Debian/glibcfrom 0, < 2.19-10

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-5119