Critical severity9.8NVD Advisory· Published Jun 19, 2017· Updated May 13, 2026

CVE-2017-1000378

Description

The NetBSD qsort() function is recursive, and not randomized, an attacker can construct a pathological input array of N elements that causes qsort() to deterministically recurse N/4 times. This allows attackers to consume arbitrary amounts of stack memory and manipulate stack memory to assist in arbitrary code execution attacks. This affects NetBSD 7.1 and possibly earlier versions.

Affected products

NetBSD/NetBSD
cpe:2.3:o:netbsd:netbsd:*:*:*:*:*:*:*:*
Range: <=7.1

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

cvsweb.netbsd.org/bsdweb.cgi/src/lib/libc/stdlib/qsort.cnvdThird Party Advisory
www.securityfocus.com/bid/99255nvdThird Party AdvisoryVDB Entry
www.qualys.com/2017/06/19/stack-clash/stack-clash.txtnvdThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.637
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000