CVE-2018-19591

Description

In the GNU C Library (aka glibc or libc6) through 2.28, attempting to resolve a crafted hostname via getaddrinfo() leads to the allocation of a socket descriptor that is not closed. This is related to the if_nametoindex() function.

CVSS Metrics

• v3.1•HIGH•Score: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
• v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 1.77%• Percentile: 83%

Techniques & Countermeasures

• CWE-20•Improper Input Validation

  The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

• CWE-404•Improper Resource Shutdown or Release

  The product does not release or incorrectly releases a resource before it is made available for re-use.

Affected Systems

• fedoraproject•fedora

  28 | 29

• gnu•glibc

  ≤ 2.28

References (11)

• https://sourceware.org/git/?p=glibc.git%3Ba=blob_plain%3Bf=NEWS%3Bhb=HEAD
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BO7WHN52GFMC5F2I2232GFIPSSXWFV7G/
• http://www.securityfocus.com/bid/106037
• https://sourceware.org/bugzilla/show_bug.cgi?id=23927
• https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/M52KE4YR3GNMHQUOS3DKAGZD5TQ5D5UH/
• https://security.gentoo.org/glsa/201903-09
• http://www.securitytracker.com/id/1042174
• https://sourceware.org/git/gitweb.cgi?p=glibc.git%3Ba=commitdiff%3Bh=d527c860f5a3f0ed687bd03f0cb464612dc23408
• https://security.netapp.com/advisory/ntap-20190321-0003/
• https://security.gentoo.org/glsa/201908-06
• https://usn.ubuntu.com/4416-1/