An off-by-one heap-based buffer overflow was found in the __vsyslog_internal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when these functions are called with a message bigger than INT_MAX bytes, leading to an incorrect calculation of the buffer size to store the message, resulting in an application crash. This issue affects glibc 2.37 and newer.
| Version | Score | Severity | Vector String |
|---|---|---|---|
| 3.1 | 8.2 | High | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H |
| Product | Vendor | Version |
|---|---|---|
| Red Hat Enterprise Linux 7 | Red Hat | <= 5.4.* |
| Red Hat Enterprise Linux 6 | Red Hat | 2.6.35 |
| Red Hat Enterprise Linux 7 | Red Hat | <= 5.10.* |
| Red Hat Enterprise Linux 8 | Red Hat | <= 5.15.* |
| Red Hat Enterprise Linux 9 | Red Hat | <= 6.1.* |
| Fedora | Fedora | <= 6.6.* |
| Red Hat Enterprise Linux 6 | Red Hat | < 2.6.35 |
| glibc | n/a | < bdb43af4fdb39f844ede401bdb1258f67a580a27 |