In musl libc up to and including 1.2.1, wcsnrtombs mishandles particular combinations of destination buffer size and source character limit, as demonstrated by an invalid write access (buffer overflow).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
musl-libc musl |
||
debian debian linux 9.0 |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |
||
oracle graalvm 20.3.2 |
||
oracle graalvm 21.1.0 |