CRITICAL9.8CVE-2022-29503A memory corruption vulnerability exists in the libpthread linuxthreads functionality of uClibC 0.9.33.2 and uClibC-ng 1.0.40. from 0
CRITICAL9.8CVE-2021-27419uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc-simple. from 0
CRITICAL9.8CVE-2017-9728In uClibc 0.9.33.2, there is an out-of-bounds read in the get_subexp function in misc/regex/regexec.c when processing a crafted regular exp… from 0
CRITICAL9.6In uClibc and uClibc-ng before 1.0.39, incorrect handling of special characters in domain names returned by DNS servers via gethostbyname,…
from 0
HIGH7.5In uClibc 0.9.33.2, there is stack exhaustion (uncontrolled recursion) in the check_dst_limits_calc_pos_1 function in misc/regex/regexec.c…
from 0
HIGH7.5The __read_etc_hosts_r function in libc/inet/resolv.c in uClibc-ng before 1.0.12 allows remote DNS servers to cause a denial of service (in…
from 0, < 1.0.20-1
HIGH7.5uclibc - security update
from 0, < 0.9.32-1+deb7u1
HIGH7.5uclibc - security update
from 0, < 1.0.20-1
HIGH7.5Integer signedness error in libc/string/arm/memset.S in uClibc and uClibc-ng before 1.0.16 allows context-dependent attackers to cause a de…
from 0, < 1.0.20-1
MEDIUM6.5uClibc-ng through 1.0.40 and uClibc through 0.9.33.2 use predictable DNS transaction IDs that may lead to DNS cache poisoning.
from 0