In the GNU C Library (aka glibc or libc6) prior to 2.28, parse_reg_exp in posix/regcomp.c misparses alternatives, which allows malicious users to cause a denial of service (assertion failure and application exit) or trigger an incorrect result by attempting a regular-expression match.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu glibc |
||
netapp steelstore cloud integrated storage - |
||
netapp ontap select deploy administration utility - |
||
netapp cloud backup |