CVE-2011-1071 (retired)

Priority
Description
The GNU C Library (aka glibc or libc6) before 2.12.2 and Embedded GLIBC
(EGLIBC) allow context-dependent attackers to execute arbitrary code or
cause a denial of service (memory consumption) via a long UTF8 string that
is used in an fnmatch call, aka a "stack extension attack," a related issue
to CVE-2010-2898, CVE-2010-1917, and CVE-2007-4782, as originally reported
for use of this library by Google Chrome.
Assigned-to
sbeattie
More Information

Updated: 2019-08-23 08:42:49 UTC (commit 436fd4ed4cf0038ddd382cb8649607ace163dda7)