Search for packages
| purl | pkg:deb/debian/newlib@3.3.0-1.3 |
| Tags | Ghost |
| Next non-vulnerable version | 4.4.0.20231231-4 |
| Latest non-vulnerable version | 4.4.0.20231231-4 |
| Risk | 4.4 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-tjmc-hukq-aaan
Aliases: CVE-2021-3420 |
A flaw was found in newlib in versions prior to 4.0.0. Improper overflow validation in the memory allocation functions mEMALIGn, pvALLOc, nano_memalign, nano_valloc, nano_pvalloc could case an integer overflow, leading to an allocation of a small buffer and then to a heap-based buffer overflow. |
Affected by 1 other vulnerability. Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| This package is not known to fix vulnerabilities. | ||
| Date | Actor | Action | Vulnerability | Source | VulnerableCode Version |
|---|---|---|---|---|---|
| 2024-11-24T09:35:21.106526+00:00 | Debian Importer | Fixing | VCID-xwnv-7wwe-hqbk | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-11-22T19:58:03.421702+00:00 | Debian Importer | Fixing | VCID-tjmc-hukq-aaan | https://security-tracker.debian.org/tracker/data/json | 35.0.0 |
| 2024-10-11T05:42:10.071313+00:00 | Debian Importer | Fixing | VCID-xwnv-7wwe-hqbk | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-10-09T18:40:47.589042+00:00 | Debian Importer | Fixing | VCID-tjmc-hukq-aaan | https://security-tracker.debian.org/tracker/data/json | 34.0.2 |
| 2024-09-25T19:51:31.155305+00:00 | Debian Importer | Fixing | VCID-xwnv-7wwe-hqbk | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-09-19T03:04:36.958407+00:00 | Debian Importer | Fixing | VCID-tjmc-hukq-aaan | https://security-tracker.debian.org/tracker/data/json | 34.0.1 |
| 2024-04-25T01:25:37.282800+00:00 | Debian Importer | Affected by | VCID-tjmc-hukq-aaan | https://security-tracker.debian.org/tracker/data/json | 34.0.0rc4 |