CVE-2023-5156
published 2023-09-25CVE-2023-5156: A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.
Affected
18 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | glibc | < glibc 2.37-11 (forky) | glibc 2.37-11 (forky) |
| gnu | glibc | >= 0 < 2.37-11 | 2.37-11 |
| gnu | glibc | >= 0 < 2.37-11 | 2.37-11 |
| gnu | glibc | >= 0 < 2.31-0ubuntu9.14 | 2.31-0ubuntu9.14 |
| gnu | glibc | >= 0 < 2.35-0ubuntu3.6 | 2.35-0ubuntu3.6 |
| gnu | glibc | >= 0 < 2.35-0ubuntu3.5 | 2.35-0ubuntu3.5 |
| gnu | glibc | >= 0 < 2.23-0ubuntu11.3+esm5 | 2.23-0ubuntu11.3+esm5 |
| gnu | glibc | >= 0 < 2.27-3ubuntu1.6+esm1 | 2.27-3ubuntu1.6+esm1 |
| gnu | glibc | >= 2.34 < 2.39 | 2.39 |
| msrc | azl3_glibc_2.38-10_on_azure_linux_3.0 | — | — |
| msrc | azl3_glibc_2.38-6_on_azure_linux_3.0 | — | — |
| msrc | azure_linux_3.0_arm | — | — |
| msrc | azure_linux_3.0_x64 | — | — |
| msrc | cbl2_glibc_2.35-6_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| redhat | enterprise_linux | — | — |
| redhat | enterprise_linux | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
osv5.9MEDIUM