Lucene search
PRIOn knowledge basePRION:CVE-2022-39046HistoryAug 31, 2022 - 6:15 a.m.
Heap overflow
2022-08-3106:15:00
PRIOn knowledge base
www.prio-n.com
11
issue
gnu c library
memory
syslog function
crafted input
uninitialized memory
heap
log file
security vulnerability
nvd
An issue was discovered in the GNU C Library (glibc) 2.36. When the syslog function is passed a crafted input string larger than 1024 bytes, it reads uninitialized memory from the heap and prints it to the target log file, potentially revealing a portion of the contents of the heap.
References
packetstormsecurity.com/files/176932/glibc-syslog-Heap-Based-Buffer-Overflow.html
seclists.org/fulldisclosure/2024/Feb/3
www.openwall.com/lists/oss-security/2024/01/30/6
www.openwall.com/lists/oss-security/2024/01/30/8
security.gentoo.org/glsa/202310-03
security.netapp.com/advisory/ntap-20221104-0002/
sourceware.org/bugzilla/show_bug.cgi?id=29536
Related
cgr
cgr
CVE-2022-39046 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2022-39046
2022-08-31 06:15:07
debiancve
debiancve
CVE-2022-39046
2022-08-31 06:15:07
redhatcve
redhatcve
CVE-2022-39046
2022-09-01 14:58:08
nvd
nvd
CVE-2022-39046
2022-08-31 06:15:07
osv
osv
CVE-2022-39046
2022-08-31 06:15:07
ubuntucve
ubuntucve
CVE-2022-39046
2022-08-31 00:00:00
cvelist
cvelist
CVE-2022-39046
2022-08-31 00:00:00
wolfi
wolfi
CVE-2022-39046 vulnerabilities
2024-07-03 09:08:38
zdt
zdt
glibc syslog() Heap-Based Buffer Overflow Exploit
2024-01-31 00:00:00
qualysblog
qualysblog
Qualys TRU Discovers Important Vulnerabilities in GNU C Libraryβs syslog()
2024-01-30 18:31:05
nessus
nessus
GLSA-202310-03 : glibc: Multiple vulnerabilities
2023-10-04 00:00:00
gentoo
gentoo
glibc: Multiple vulnerabilities
2023-10-04 00:00:00
packetstorm
packetstorm
glibc syslog() Heap-Based Buffer Overflow
2024-01-31 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2023-5.0-0040
2023-06-28 00:00:00