CVE-2019-1010022

ADVISORY - nist

Summary

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

EPSS Score⁠: 0.00145 (0.359)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-119⁠

Improper Restriction of Operations within the Bounds of a Memory Buffer

ADVISORY - redhat

CWE-119⁠

Improper Restriction of Operations within the Bounds of a Memory Buffer

CWE-121⁠

Stack-based Buffer Overflow

CWE-305⁠

Authentication Bypass by Primary Weakness

Impacted images

Advisories

NIST

CREATED

6 years ago

UPDATED

7 months ago

ADVISORY IDCVE-2019-1010022⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-119⁠

CVSS SCORE

9.8critical

Debian

CREATED

6 years ago

UPDATED

2 days ago

ADVISORY IDCVE-2019-1010022⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Alow

Ubuntu

CREATED

6 years ago

UPDATED

3 months ago

ADVISORY IDCVE-2019-1010022⁠

EXPLOITABILITY SCORE

3.9

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

9.8low

Red Hat

CREATED

6 years ago

UPDATED

3 months ago

ADVISORY IDCVE-2019-1010022⁠

EXPLOITABILITY SCORE

2.2

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)

CWE-119⁠CWE-121⁠CWE-305⁠

CVSS SCORE

N/Aunspecified

Chainguard

CREATED

2 years ago

UPDATED

2 years ago

ADVISORY ID

CGA-v7x3-922x-m2jv

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

intheWild

CREATED

4 months ago

UPDATED

4 months ago

ADVISORY IDCVE-2019-1010022⁠

EXPLOITABILITY SCORE

EXPLOITS FOUND

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY