The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive information via an out-of-range time value.
| Product | Vendor | Version |
|---|---|---|
| n/a | n/a | < 274cba8d2d1b48c72d8bd90e76c9e2dc1aa0a81d |