« List of all CVEs

CVE-2014-4043

Published: 10/6/2014 Last updated: 8/6/2024 Reserved: 6/12/2014

The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities.

CNA assigner: mitre (8254265b-2729-46b6-b9e3-3dfca2d5bfca) Requested by: n/a

Opam packages affected (1)

gettext-stub

Products affected (1)

Product Vendor Version
n/a n/a 7.4.0

References (32)