OESA-2026-2032

See a problem?
Please try reporting it to the source first.

Source

https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2026-2032

Import Source

https://repo.openeuler.org/security/data/osv/OESA-2026-2032.json

JSON Data

https://api.osv.dev/v1/vulns/OESA-2026-2032

Upstream

CVE-2026-4046

Published

2026-04-25T05:48:42Z

Modified

2026-04-25T06:04:49.424849Z

Summary

glibc security update

Details

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational facilities as open, read, write, malloc, printf, getaddrinfo, dlopen, pthread_create, crypt, login, exit and more.

Security Fix(es):

The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application.

This vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them.(CVE-2026-4046)

Database specific

{
    "severity": "High"
}

References

Affected packages

openEuler:24.03-LTS-SP3 / glibc

Package

Name: glibc
Purl: pkg:rpm/openEuler/glibc&distro=openEuler-24.03-LTS-SP3

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2.38-101.oe2403sp3

Ecosystem specific

{
    "x86_64": [
        "glibc-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-all-langpacks-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-common-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-debuginfo-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-debugsource-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-debugutils-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-devel-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-locale-archive-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-locale-source-2.38-101.oe2403sp3.x86_64.rpm",
        "glibc-nss-devel-2.38-101.oe2403sp3.x86_64.rpm",
        "libnsl-2.38-101.oe2403sp3.x86_64.rpm",
        "nscd-2.38-101.oe2403sp3.x86_64.rpm",
        "nss_modules-2.38-101.oe2403sp3.x86_64.rpm"
    ],
    "src": [
        "glibc-2.38-101.oe2403sp3.src.rpm"
    ],
    "noarch": [
        "glibc-help-2.38-101.oe2403sp3.noarch.rpm"
    ],
    "aarch64": [
        "glibc-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-all-langpacks-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-common-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-debuginfo-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-debugsource-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-debugutils-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-devel-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-locale-archive-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-locale-source-2.38-101.oe2403sp3.aarch64.rpm",
        "glibc-nss-devel-2.38-101.oe2403sp3.aarch64.rpm",
        "libnsl-2.38-101.oe2403sp3.aarch64.rpm",
        "nscd-2.38-101.oe2403sp3.aarch64.rpm",
        "nss_modules-2.38-101.oe2403sp3.aarch64.rpm"
    ]
}

Database specific

source

"https://repo.openeuler.org/security/data/osv/OESA-2026-2032.json"