CVE-2009-4881 — Integer Overflow or Wraparound in Glibc

CWE-190 — Integer Overflow or Wraparound9 documents7 sources

Severity

5.0MEDIUMNVD

CNA7.5OSV7.5

EPSS

0.6%

top 30.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

GNU Glibc

Timeline

PublishedJun 1

Latest updateMay 2

Description

Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l.c in the strfmon implementation in the GNU C Library (aka glibc or libc6) before 2.10.1 allows context-dependent attackers to cause a denial of service (application crash) via a crafted format string, as demonstrated by the %99999999999999999999n string, a related issue to CVE-2008-1391.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶Debiangnu/glibc< 2.11.1-1+3

▶NVDgnu/glibc2.9+45

🔴Vulnerability Details

GHSA

GHSA-q4g7-ccjm-h2xx: Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l↗2022-05-02

▶

OSV

CVE-2009-4881: Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l↗2010-06-01

▶

CVEList

CVE-2009-4881: Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l↗2010-06-01

▶

📋Vendor Advisories

Red Hat

kernel: tcf_fill_node() infoleak due to typo in 9ef1d4c7↗2009-10-08

▶

Debian

CVE-2009-4881: glibc - Integer overflow in the __vstrfmon_l function in stdlib/strfmon_l.c in the strfm...↗2009

▶

Red Hat

(32-bit): Integer overflow in the __vstrfmon_l function↗2008-03-25

▶

💬Community

Bugzilla

CVE-2009-4881 glibc (32-bit): Integer overflow in the __vstrfmon_l function↗2010-06-02

▶