Security Advisory

CVE-2021-40647

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-09-09 17:57:28

Last updated 2024-08-04 02:51:06

Assigner mitre

State PUBLISHED

Description

In man2html 1.6g, a specific string being read in from a file will overwrite the size parameter in the top chunk of the heap. This at least causes the program to segmentation abort if the heap size parameter isnt aligned correctly. In version before GLIBC version 2.29 and aligned correctly, it allows arbitrary write anywhere in the programs memory.

← Browse all CVEs View on cve.org ↗