CVE-2005-3590 in C Library信息

摘要

由 VulDB • 2026-07-05

GNU C库(glibc)在2.3.5版本之前,其getgrouplist函数在被调用时若传入零参数,即使指定的数组大小为零,仍会向传递的指针写入数据,从而导致缓冲区溢出,并可能允许攻击者破坏内存。

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

来源

Do you need the next level of professionalism?

Upgrade your account now!