uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc-simple. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: icscert
Published: 2022-05-03T20:20:49
Updated: 2024-08-03T20:48:17.251Z
Reserved: 2021-02-19T00:00:00
Link: CVE-2021-27419
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-05-03T21:15:08.243
Modified: 2022-05-12T15:44:50.333
Link: CVE-2021-27419
Redhat
No data.