Published: 22/07/2021 Updated: 07/11/2023

CVSS v2 Base Score: 6.4 | Impact Score: 4.9 | Exploitability Score: 10

CVSS v3 Base Score: 9.1 | Impact Score: 5.2 | Exploitability Score: 3.9

VMScore: 571

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P

The wordexp function in the GNU C Library (aka glibc) up to and including 2.33 may crash or read arbitrary memory in parse_param (in posix/wordexp.c) when called with an untrusted, crafted pattern, potentially resulting in a denial of service or disclosure of information. This occurs because atoi was used but strtoul should have been used to ensure correct calculations.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnu glibc
netapp ontap select deploy administration utility -
netapp solidfire -
netapp hci management node -
netapp active iq unified manager -
netapp e-series santricity os controller
debian debian linux 10.0

Debian Bug report logs - #990542 glibc: CVE-2021-35942 Package: src:glibc; Maintainer for src:glibc is GNU Libc Maintainers <debian-glibc@listsdebianorg>; Reported by: Moritz Mühlenhoff <jmm@inutilorg> Date: Thu, 1 Jul 2021 15:42:02 UTC Severity: important Tags: security, upstream Found in versions glibc/228-1 ...

Several security issues were fixed in GNU C Library ...

Synopsis Important: Red Hat OpenShift GitOps security update Type/Severity Security Advisory: Important Topic An update for openshift-gitops-applicationset-container, openshift-gitops-container, openshift-gitops-kam-delivery-container, and openshift-gitops-operator-container is now available for Red Hat OpenShift GitOps 12 (GitOps v122)Re ...

Synopsis Moderate: Release of OpenShift Serverless 1200 Type/Severity Security Advisory: Moderate Topic Release of OpenShift Serverless 1200Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available fo ...

Synopsis Moderate: Red Hat OpenShift distributed tracing 210 security update Type/Severity Security Advisory: Moderate Topic An update is now available for Red Hat Openshit distributed tracing 21Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, ...

Synopsis Important: Release of containers for OSP 162 director operator tech preview Type/Severity Security Advisory: Important Topic Red Hat OpenStack Platform 162 (Train) director Operator containers areavailable for technology preview Description Release osp-director-operator imagesSecurity Fix(es): golang: net/http: limit growth of h ...

Synopsis Moderate: Red Hat Advanced Cluster Management 2211 security updates and bug fixes Type/Severity Security Advisory: Moderate Topic Red Hat Advanced Cluster Management for Kubernetes 2211 General Availability release images, which provide one or more container updates and bug fixesRed Hat Product Security has rated this update as ...

An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input (CVE-2021-35942) ...

An integer overflow flaw was found in glibc that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input ...

An integer overflow flaw was found in glibc before 234 that may result in reading of arbitrary memory when wordexp is used with a specially crafted untrusted regular expression input ...

Critical Infrastructure Sectors: Critical Manufacturing

OPA policies to fail if severity is Critical or CVSS 3x score is 90 for some quick test Generate grype json output for an arbitrary image grype -o json gcrio/distroless/java:11 > grype-distroless-java-11-vulnsjson Generate JSON file schema (used extendsclasscom/json-schema-validatorhtml) This allows to catch typos when writing rego and trying keys that

CKS Notes

CKS Notes Handy notes can be also find here: githubcom/dragon7-fc/misc/tree/1385c4a2e4719b9aa914c3b274c2877f7305d11e Test k8s cluster using Vagrant Prepare the test environment - Kubernetes cluster with 1 master node and one worker node using Vagrant + VirtualBox: git clone git@githubcom:kodekloudhub/certified-kubernetes-administrator-coursegit cd certified-kubernet

CWE-190 https://sourceware.org/bugzilla/show_bug.cgi?id=28011 https://sourceware.org/glibc/wiki/Security%20Exceptions https://security.netapp.com/advisory/ntap-20210827-0005/https://security.gentoo.org/glsa/202208-24 https://lists.debian.org/debian-lts-announce/2022/10/msg00021.html https://sourceware.org/git/?p=glibc.git%3Ba=commit%3Bh=5adda61f62b77384718b4c0d8336ade8f2b4b35c https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=990542 https://nvd.nist.gov https://ubuntu.com/security/notices/USN-5310-1 https://www.cisa.gov/news-events/ics-advisories/icsa-23-348-10

CVE-2021-35942

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

ICS Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect