VYPR
Critical severity9.8NVD Advisory· Published Apr 20, 2026· Updated Apr 23, 2026

CVE-2026-5450

CVE-2026-5450

Description

Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer overflow.

Affected products

284

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.