CVE-2019-14871
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2019-14871
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-14871.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2019-14871
- Related
- Published
- 2020-03-18T16:15:11Z
- Modified
- 2025-02-06T05:49:46.395658Z
- Severity
-
- 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The REENTCHECK macro (see newlib/libc/include/sys/reent.h) as used by REENTCHECKTM, REENTCHECKMISC, REENTCHECK_MP and other newlib macros in versions prior to 3.3.0, does not check for memory allocation problems when the DEBUG flag is unset (as is the case in production firmware builds).
- References
Affected packages
Debian:11 / newlib
Package
- Name
- newlib
- Purl
- pkg:deb/debian/newlib?arch=source
Debian:12 / newlib
Package
- Name
- newlib
- Purl
- pkg:deb/debian/newlib?arch=source
Debian:13 / newlib
Package
- Name
- newlib
- Purl
- pkg:deb/debian/newlib?arch=source
Debian:11 / picolibc
Package
- Name
- picolibc
- Purl
- pkg:deb/debian/picolibc?arch=source
Debian:12 / picolibc
Package
- Name
- picolibc
- Purl
- pkg:deb/debian/picolibc?arch=source
Debian:13 / picolibc
Package
- Name
- picolibc
- Purl
- pkg:deb/debian/picolibc?arch=source
Git / github.com/bminor/newlib
Affected ranges
- Type
- GIT
- Repo
- https://github.com/bminor/newlib
- Events
-
Introduced0 Unknown introduced commit / All previous commits are affectedFixed
Affected versions
Other
binu_ss_19990502
cygwin-2_0_0-release
cygwin-2_0_1-release
cygwin-2_0_2-release
cygwin-2_0_3-release
cygwin-2_0_4-release
cygwin-2_10_0-release
cygwin-2_11_0-release
cygwin-2_11_1-release
cygwin-2_11_2-release
cygwin-2_1_0-release
cygwin-2_2_0-release
cygwin-2_2_1-release
cygwin-2_3_0-release
cygwin-2_3_1-relase
cygwin-2_3_1-release
cygwin-2_4_0-release
cygwin-2_4_1-release
cygwin-2_5_0-release
cygwin-2_5_1-release
cygwin-2_5_2-release
cygwin-2_6_0-release
cygwin-2_6_1-release
cygwin-2_7_0-release
cygwin-2_8_0-release
cygwin-2_8_1-release
cygwin-2_8_2-release
cygwin-2_9_0-release
cygwin-3_0_0-release
cygwin-3_0_1-release
cygwin-3_0_2-release
cygwin-3_0_3-release
cygwin-3_0_4-release
cygwin-3_1_0-release
cygwin-3_1_1-release
cygwin-3_1_2-release
newlib-2_3_0
newlib-2_4_0
newlib-2_5_0
newlib-snapshot-20150323
newlib-snapshot-20150423
newlib-snapshot-20150526
newlib-snapshot-20150623
newlib-snapshot-20150723
newlib-snapshot-20150824
newlib-snapshot-20150924
newlib-snapshot-20151023
newlib-snapshot-20160104
newlib-snapshot-20160226
newlib-snapshot-20160527
newlib-snapshot-20160923
newlib-snapshot-20170228
newlib-snapshot-20170323
newlib-snapshot-20170421
newlib-snapshot-20170519
newlib-snapshot-20170623
newlib-snapshot-20170720
newlib-snapshot-20170818
newlib-snapshot-20170922
newlib-snapshot-20171222
newlib-snapshot-20180118
newlib-snapshot-20180226
newlib-snapshot-20180720
newlib-snapshot-20180802
newlib-snapshot-20180831
newlib-snapshot-20181231
newlib-snapshot-20200102
newlib-3.*
newlib-3.0.0
newlib-3.1.0
newlib-3.2.0