CVE-2026-6042

ADVISORY - nist

Summary

A security flaw has been discovered in musl libc up to 1.2.6. Affected is the function iconv of the file src/locale/iconv.c of the component GB18030 4-byte Decoder. Performing a manipulation results in inefficient algorithmic complexity. The attack must be initiated from a local position. To fix this issue, it is recommended to deploy a patch.

EPSS Score⁠: 0.00013 (0.021)

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-404⁠

Improper Resource Shutdown or Release

CWE-407⁠

Inefficient Algorithmic Complexity

Impacted images

Advisories

Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.