CVE-2017-1000408

Source
https://cve.org/CVERecord?id=CVE-2017-1000408
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000408.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2017-1000408
Downstream
Related
Published
2018-02-01T04:29:00.247Z
Modified
2026-07-08T15:10:00.204416Z
Severity
  • 7.8 (High) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LDHWCAPMASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

References

Affected packages

Git / github.com/bminor/glibc

Affected ranges

Type
GIT
Repo
https://github.com/bminor/glibc
Events
Database specific
{
    "source": "CPE_STRING",
    "cpe": "cpe:2.3:a:gnu:glibc:2.1.1:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "2.1.1"
        },
        {
            "last_affected": "2.1.1"
        }
    ]
}

Affected versions

2.*
2.1.1
Other
cvs/glibc-2_1_1
glibc-2.*
glibc-2.1.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000408.json"

Git / sourceware.org/git/glibc.git

Affected ranges

Type
GIT
Repo
https://sourceware.org/git/glibc.git
Events
Introduced
6d8ec2b1b2934abc8d951ccb534872f0086fda48
Last affected
6d8ec2b1b2934abc8d951ccb534872f0086fda48
Database specific
{
    "source": "CPE_STRING",
    "cpe": "cpe:2.3:a:gnu:glibc:2.1.1:*:*:*:*:*:*:*",
    "extracted_events": [
        {
            "introduced": "2.1.1"
        },
        {
            "last_affected": "2.1.1"
        }
    ]
}

Affected versions

2.*
2.1.1
Other
cvs/glibc-2_1_1
glibc-2.*
glibc-2.1.1

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-1000408.json"