Updated: 2024-11-23 05:52:03.804562
Description:
The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | HIGH | 7.1000000000000005 |
| CVSS Version 3.x | MEDIUM | 5.9 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated | Statement |
|---|---|---|---|---|---|---|---|---|
| CentOS 7 ELS | glibc | 2.17 | 5.9 | MEDIUM | Already Fixed | 2023-11-07 03:51:23 | ||
| CentOS 8.4 ELS | glibc | 2.28 | 5.9 | MEDIUM | Already Fixed | 2023-11-07 03:51:22 | ||
| CentOS 8.5 ELS | glibc | 2.28 | 5.9 | MEDIUM | Already Fixed | 2023-11-07 03:51:23 | ||
| Ubuntu 16.04 ELS | glibc | 2.23-0 | 5.9 | MEDIUM | Released | CLSA-2022:1671481209 | 2022-12-19 16:03:11 |