Unrated severityNVD Advisory· Published Apr 17, 2020· Updated Aug 4, 2024

CVE-2020-1751

Description

An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when storing the frame address, resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability.

Affected products

osv-coords7 versions
pkg:rpm/opensuse/glibc&distro=openSUSE%20Tumbleweed pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP4 pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5 pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP4 pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP5 pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4 pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
< 2.38-6.1+ 6 more
- (no CPE)range: < 2.38-6.1
- (no CPE)range: < 2.22-100.21.5
- (no CPE)range: < 2.22-100.21.5
- (no CPE)range: < 2.22-100.21.5
- (no CPE)range: < 2.22-100.21.5
- (no CPE)range: < 2.22-100.21.5
- (no CPE)range: < 2.22-100.21.5
Red Hat/glibcv5
Range: 2.31

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

security.gentoo.org/glsa/202006-04mitrevendor-advisoryx_refsource_GENTOO
usn.ubuntu.com/4416-1/mitrevendor-advisoryx_refsource_UBUNTU
bugzilla.redhat.com/show_bug.cgimitrex_refsource_CONFIRM
security.netapp.com/advisory/ntap-20200430-0002/mitrex_refsource_CONFIRM
sourceware.org/bugzilla/show_bug.cgimitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000