CVE-2025-15281

wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

Published: 1/20/2026 Last updated: 1/22/2026 Reserved: 12/29/2025

Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process.

CNA assigner: glibc (3ff69d7a-14f2-4f67-a097-88dee7810d18) Requested by: n/a

Metrics

Version	Score	Severity	Vector String
3.1	7.5	High	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Opam packages affected (1)

gettext-stub

Products affected (1)

Product	Vendor	Version
glibc	The GNU C Library	17.6.1a

References (4)

https://sourceware.org/bugzilla/show_bug.cgi?id=33814
http://www.openwall.com/lists/oss-security/2026/01/20/3
https://sourceware.org/bugzilla/show_bug.cgi?id=33814
http://www.openwall.com/lists/oss-security/2026/01/20/3

Credits (2)

1 Vitaly Simonovich
1 Vitaly Simonovich