Candidate: CVE-2018-6551
PublicDate: 2018-02-02 14:29:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6551
 https://sourceware.org/bugzilla/show_bug.cgi?id=22774
 https://sourceware.org/git/?p=glibc.git;a=commit;h=8e448310d74b283c5cd02b9ed7fb997b47bf9b22
Description:
 The malloc implementation in the GNU C Library (aka glibc or libc6), from
 version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not
 properly handle malloc calls with arguments close to SIZE_MAX and could
 return a pointer to a heap region that is smaller than requested,
 eventually leading to heap corruption.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H [9.8 CRITICAL]

Patches_eglibc:
upstream_eglibc: needs-triage
precise/esm_eglibc: not-affected
trusty_eglibc: not-affected
trusty/esm_eglibc: not-affected
xenial_eglibc: DNE
artful_eglibc: DNE
bionic_eglibc: DNE
cosmic_eglibc: DNE
devel_eglibc: DNE

Patches_glibc:
 upstream: https://sourceware.org/git/?p=glibc.git;a=patch;h=8e448310d74b283c5cd02b9ed7fb997b47bf9b22
upstream_glibc: released (2.27)
precise/esm_glibc: DNE
trusty_glibc: DNE
trusty/esm_glibc: DNE
xenial_glibc: not-affected
esm-infra/xenial_glibc: not-affected
artful_glibc: ignored (reached end-of-life)
bionic_glibc: not-affected (2.27-3ubuntu1)
cosmic_glibc: not-affected (2.27-3ubuntu1)
devel_glibc: not-affected (2.27-3ubuntu1)