VYPR

rpm package

suse/glibc&distro=SUSE Linux Enterprise Server 11 SP4 LTSS EXTREME CORE

pkg:rpm/suse/glibc&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4%20LTSS%20EXTREME%20CORE

Vulnerabilities (7)

  • CVE-2026-4046HigMar 30, 2026
    affected < 2.11.3-17.110.55.1fixed 2.11.3-17.110.55.1

    The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application. This vulnerability can be trivially mitigated by rem

  • CVE-2024-2961HigApr 17, 2024
    affected < 2.11.3-17.110.52.1fixed 2.11.3-17.110.52.1

    The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

  • CVE-2020-27618Feb 26, 2021
    affected < 2.11.3-17.110.43.1fixed 2.11.3-17.110.43.1

    The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications,

  • CVE-2021-3326Jan 27, 2021
    affected < 2.11.3-17.110.43.1fixed 2.11.3-17.110.43.1

    The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.

  • CVE-2019-25013Jan 4, 2021
    affected < 2.11.3-17.110.43.1fixed 2.11.3-17.110.43.1

    The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.

  • CVE-2020-29573Dec 5, 2020
    affected < 2.11.3-17.110.43.1fixed 2.11.3-17.110.43.1

    sysdeps/i386/ldbl2mpn.c in the GNU C Library (aka glibc or libc6) before 2.23 on x86 targets has a stack-based buffer overflow if the input to any of the printf family of functions is an 80-bit long double with a non-canonical bit pattern, as seen when passing a \x00\x04\x00\x00\

  • CVE-2020-29562Dec 4, 2020
    affected < 2.11.3-17.110.43.1fixed 2.11.3-17.110.43.1

    The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4 text containing an irreversible character, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.