Security Advisory

CVE-2018-19591

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-12-04 16:00:00

Last updated 2025-12-03 19:13:21

Assigner mitre

State PUBLISHED

Description

In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname via getaddrinfo() leads to the allocation of a socket descriptor that is not closed. This is related to the if_nametoindex() function.

← Browse all CVEs View on cve.org ↗