glibc vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the glibc package. This does not include vulnerabilities belonging to this package’s dependencies.

How to fix?

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free
VulnerabilityVulnerable Version
  • H
Out-of-bounds Write

*
  • H
Use After Free

*
  • M
Out-of-Bounds

*
  • M
Information Exposure

*
  • H
CVE-2019-1010023

*
  • M
Use of Insufficiently Random Values

*
  • C
Out-of-Bounds

*
  • C
Out-of-Bounds

<2.3.5-3
  • M
Improper Data Handling

<2.5-1
  • H
Uncontrolled Recursion

*
  • C
Out-of-bounds Read

*
  • H
Uncontrolled Recursion

*
  • H
Improper Data Handling

*
  • M
CVE-2019-7309

*
  • M
Improper Input Validation

*
  • H
Improper Resource Shutdown or Release

*
  • C
Out-of-bounds Write

*
  • H
Out-of-bounds Write

*
  • C
Out-of-bounds Write

*
  • H
Out-of-Bounds

*
  • H
Missing Release of Resource after Effective Lifetime

*
  • H
Out-of-bounds Write

*
  • H
Untrusted Search Path

*
  • C
Out-of-Bounds

*
  • M
Missing Release of Resource after Effective Lifetime

*
  • C
Out-of-Bounds

*
  • M
Out-of-Bounds

<2.15
  • M
Use After Free

*
  • M
Allocation of Resources Without Limits or Throttling

*
  • H
NULL Pointer Dereference

*
  • H
Out-of-Bounds

<2.19-18+deb8u10
  • C
Out-of-Bounds

<2.19-14
  • H
Integer Overflow or Wraparound

<2.19-18+deb8u2
  • M
Out-of-bounds Read

<2.19-18+deb8u2
  • M
Improper Data Handling

*
  • H
Integer Overflow or Wraparound

<2.19-18+deb8u2
  • M
Improper Input Validation

*
  • H
Improper Access Control

<2.19-18+deb8u6
  • M
Out-of-bounds Write

<2.19-18+deb8u5
  • H
Improper Input Validation

<2.19-18+deb8u5
  • H
Out-of-Bounds

<2.19-18+deb8u5
  • H
Out-of-Bounds

<2.19-18+deb8u5
  • C
Out-of-Bounds

<2.19-18+deb8u3
  • C
Out-of-Bounds

<2.19-18+deb8u3
  • C
Out-of-Bounds

*
  • C
Numeric Errors

<2.19-18+deb8u3
  • H
Access Restriction Bypass

<2.19-18+deb8u4
  • H
Out-of-Bounds

<2.19-18+deb8u3
  • M
Security Features

<2.19-18+deb8u2
  • H
Out-of-Bounds

<2.19-18+deb8u2
  • M
Out-of-Bounds

<2.19-18+deb8u1
  • M
Code

<2.15-1
  • H
Out-of-Bounds

<2.19-15
  • M
Out-of-Bounds

<2.19-15
  • M
Code

<2.19-18+deb8u2
  • H
Resource Management Errors

<2.19-14
  • M
Code

<2.19-1
  • C
Out-of-bounds Write

<2.18-1
  • M
Out-of-Bounds

<2.19-12
  • M
Improper Input Validation

<2.17-1
  • M
Improper Input Validation

<2.19-14
  • H
Arbitrary Code Injection

<2.19-2
  • H
Numeric Errors

<2.19-10
  • M
Directory Traversal

<2.19-6
  • M
Numeric Errors

<2.13-35
  • M
Access Restriction Bypass

<2.19-14
  • M
Numeric Errors

<2.13-35
  • M
Out-of-Bounds

<2.18-1
  • M
Access Restriction Bypass

<2.19-18+deb8u4
  • M
Out-of-Bounds

<2.17-94
  • M
Out-of-Bounds

<2.17-94
  • M
Numeric Errors

<2.17-93
  • H
Numeric Errors

<2.17-94
  • M
Improper Input Validation

<2.17-94
  • M
Numeric Errors

<2.13-24
  • M
Out-of-Bounds

<2.17-2
  • M
Out-of-Bounds

<2.17-2
  • M
Numeric Errors

<2.13-36
  • M
Configuration

<2.13-8
  • H
Access Restriction Bypass

<2.13-16
  • M
Numeric Errors

<2.13-8
  • M
Resource Management Errors

<2.11.2-12
  • H
Access Restriction Bypass

<2.10.1-7
  • M
Resource Management Errors

*
  • M
CVE-2010-4051

*
  • M
Resource Management Errors

*
  • H
Link Following

<2.11.2-8
  • H
Access Restriction Bypass

<2.11.2-8
  • M
Numeric Errors

<2.11.1-1
  • H
Improper Input Validation

<2.11-1
  • M
Numeric Errors

<2.11-1
  • M
Numeric Errors

<2.11.1-1
  • H
Credentials Management

<2.10.2-4
  • H
Numeric Errors

<2.11-1
  • H
Resource Management Errors

<2.7-8
  • C
Numeric Errors

<2.2-1
  • M
Improper Input Validation

<2.7-1
  • H
Numeric Errors

<2.6-2
  • M
CVE-2004-0968

<2.3.2.ds1-19
  • M
CVE-2004-1453

<2.3.5
  • M
CVE-2004-1382

<2.3.2.ds1-19
  • H
CVE-2003-0689

<2.2.5
  • H
CVE-2003-0028

<2.3.1-16
  • M
CVE-2002-1146

<2.3
  • C
CVE-2002-0391

<2.2.5-13
  • H
CVE-2002-0684

<2.2.5-8
  • H
CVE-2002-0651

<2.2.5-8