Computer Security
[EN] securityvulns.ru no-pyccku


glibc use-after-free
Published:11.08.2014
Source:
SecurityVulns ID:13915
Type:library
Threat Level:
5/10
Description:posix_spawn_file_actions_addopen() use-fater-free.
Affected:GNU : glibc 2.14
CVE:CVE-2014-4043 (The posix_spawn_file_actions_addopen function in glibc before 2.20 does not copy its path argument in accordance with the POSIX specification, which allows context-dependent attackers to trigger use-after-free vulnerabilities.)
Original documentdocumentMANDRIVA, [ MDVSA-2014:152 ] glibc (11.08.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod