CVE-2026-6042

ADVISORY - nist

Summary

A security flaw has been discovered in musl libc up to 1.2.6. Affected is the function iconv of the file src/locale/iconv.c of the component GB18030 4-byte Decoder. Performing a manipulation results in inefficient algorithmic complexity. The attack must be initiated from a local position. To fix this issue, it is recommended to deploy a patch.

EPSS Score⁠: 0.00013 (0.021)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-404⁠

Improper Resource Shutdown or Release

CWE-407⁠

Inefficient Algorithmic Complexity

Impacted images

Advisories

NIST

CREATED

1 day ago

UPDATED

1 day ago

ADVISORY IDCVE-2026-6042⁠

EXPLOITABILITY SCORE

1.8

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)

CWE-404⁠CWE-407⁠

CVSS SCORE

4.8medium

Alpine

CREATED

2 hours ago

UPDATED

2 hours ago

ADVISORY IDCVE-2026-6042⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Debian

CREATED

12 hours ago

UPDATED

7 hours ago

ADVISORY IDCVE-2026-6042⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

RATING UNAVAILABLE FROM ADVISORY

Ubuntu

CREATED

19 hours ago

UPDATED

19 hours ago

ADVISORY IDCVE-2026-6042⁠

EXPLOITABILITY SCORE

-

EXPLOITS FOUND

-

COMMON WEAKNESS ENUMERATION (CWE)-

CVSS SCORE

N/Amedium