cbcvebase.
CVE-2021-3326
published 2021-01-27

CVE-2021-3326: The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.

Affected

40 ranges· showing 25
VendorProductVersion rangeFixed in
debiandebian_linux
debianglibc< glibc 2.31-10 (bookworm)glibc 2.31-10 (bookworm)
fujitsum10-1_firmware< xcp2410xcp2410
fujitsum10-1_firmware< xcp3110xcp3110
fujitsum10-4_firmware< xcp2410xcp2410
fujitsum10-4_firmware< xcp3110xcp3110
fujitsum10-4s_firmware< xcp2410xcp2410
fujitsum10-4s_firmware< xcp3110xcp3110
fujitsum12-1_firmware< xcp2410xcp2410
fujitsum12-1_firmware< xcp3110xcp3110
fujitsum12-2_firmware< xcp2410xcp2410
fujitsum12-2_firmware< xcp3110xcp3110
fujitsum12-2s_firmware< xcp2410xcp2410
fujitsum12-2s_firmware< xcp3110xcp3110
gnuglibc<= 2.32.0
gnuglibc>= 0 < 2.31-102.31-10
gnuglibc>= 0 < 2.31-102.31-10
gnuglibc>= 0 < 2.31-102.31-10
gnuglibc>= 0 < 2.31-102.31-10
gnuglibc>= 0 < 2.27-3ubuntu1.52.27-3ubuntu1.5
gnuglibc>= 0 < 2.31-0ubuntu9.72.31-0ubuntu9.7
gnuglibc>= 0 < 2.23-0ubuntu11.3+esm22.23-0ubuntu11.3+esm2
msrccbl_mariner_1.0_arm
msrccbl_mariner_1.0_x64
msrcglibc-2.28-17.cm1.aarch64.rpm_on_cbl_mariner_1.0_arm

CVSS provenance

nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv7.5HIGH