CVE-2018-11236 vulnerability in GNU and Other Products
Published on May 18, 2018

stdlib/canonicalize.c in the GNU C Library (aka glibc or libc6) 2.27 and earlier, when processing very long pathname arguments to the realpath function, could encounter an integer overflow on 32-bit architectures, leading to a stack-based buffer overflow and, potentially, arbitrary code execution.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2018-11236

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-11236 are published in these products:

GNU Glibc

NetApp Data Ontap Edge

NetApp Element Software Management

Oracle Communications Session Border Controller

Oracle Enterprise Communications Broker

Red Hat Virtualization Host

Red Hat Enterprise Linux Desktop

Red Hat Enterprise Linux Server

Red Hat Enterprise Linux Workstation

Canonical Ubuntu Linux

Exploit Probability

EPSS

0.89%

Percentile

75.23%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2018-11236 vulnerability in GNU and Other ProductsPublished on May 18, 2018

Products Associated with CVE-2018-11236

Exploit Probability

CVE-2018-11236 vulnerability in GNU and Other Products
Published on May 18, 2018