CVE-2019-1010025

ADVISORY - nist

Summary

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthread_created thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability.

EPSS Score⁠: 0.00235 (0.464)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-330⁠

Use of Insufficiently Random Values

ADVISORY - redhat

CWE-200⁠

Exposure of Sensitive Information to an Unauthorized Actor

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.