VulnerableCode Package Details - pkg:alpm/archlinux/glibc@2.33-1

Search for packages

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerability

Summary

Fixed by

This package is not known to be affected by vulnerabilities.

Vulnerability	Summary	Aliases
VCID-c3ax-wdga-aaam	The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.	CVE-2021-3326
VCID-k9gp-cakq-aaak	The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.	CVE-2019-25013
VCID-t33k-37qm-aaan	The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4 text containing an irreversible character, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.	CVE-2020-29562
VCID-zsrq-e5ww-aaaf	The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.	CVE-2020-27618

Vulnerability

Summary

Aliases

VCID-c3ax-wdga-aaam

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid input sequences in the ISO-2022-JP-3 encoding, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.

CVE-2021-3326

VCID-k9gp-cakq-aaak

The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.

CVE-2019-25013

VCID-t33k-37qm-aaan

The iconv function in the GNU C Library (aka glibc or libc6) 2.30 to 2.32, when converting UCS4 text containing an irreversible character, fails an assertion in the code path and aborts the program, potentially resulting in a denial of service.

CVE-2020-29562

VCID-zsrq-e5ww-aaaf

The iconv function in the GNU C Library (aka glibc or libc6) 2.32 and earlier, when processing invalid multi-byte input sequences in IBM1364, IBM1371, IBM1388, IBM1390, and IBM1399 encodings, fails to advance the input state, which could lead to an infinite loop in applications, resulting in a denial of service, a different vulnerability from CVE-2016-10228.

CVE-2020-27618

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2024-09-18T02:02:28.744945+00:00	Arch Linux Importer	Fixing	VCID-k9gp-cakq-aaak	https://security.archlinux.org/AVG-1320	34.0.1
2024-09-18T02:02:28.717654+00:00	Arch Linux Importer	Fixing	VCID-zsrq-e5ww-aaaf	https://security.archlinux.org/AVG-1320	34.0.1
2024-09-18T02:02:28.690356+00:00	Arch Linux Importer	Fixing	VCID-t33k-37qm-aaan	https://security.archlinux.org/AVG-1320	34.0.1
2024-09-18T02:02:28.662002+00:00	Arch Linux Importer	Fixing	VCID-c3ax-wdga-aaam	https://security.archlinux.org/AVG-1320	34.0.1
2024-06-15T20:59:56.689293+00:00	Arch Linux Importer	Fixing	VCID-k9gp-cakq-aaak	https://security.archlinux.org/AVG-1320	34.0.0rc4
2024-06-15T20:59:56.667717+00:00	Arch Linux Importer	Fixing	VCID-zsrq-e5ww-aaaf	https://security.archlinux.org/AVG-1320	34.0.0rc4
2024-06-15T20:59:56.646115+00:00	Arch Linux Importer	Fixing	VCID-t33k-37qm-aaan	https://security.archlinux.org/AVG-1320	34.0.0rc4
2024-06-15T20:59:56.624438+00:00	Arch Linux Importer	Fixing	VCID-c3ax-wdga-aaam	https://security.archlinux.org/AVG-1320	34.0.0rc4