Critical severity9.8NVD Advisory· Published Aug 20, 2024· Updated Jun 17, 2026
CVE-2024-30949
CVE-2024-30949
Description
An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling in the _gettimeofday function.
Affected products
2Patches
Vulnerability mechanics
References
3- gist.github.com/visitorckw/6b26e599241ea80210ea136b28441661nvdPatch
- inbox.sourceware.org/newlib/20231129035714.469943-1-visitorckw%40gmail.com/nvdMailing ListPatch
- sourceware.org/git/nvdBroken Link
News mentions
0No linked articles in our index yet.