The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 6.11 |