[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-MGASA-2014-0496":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T14:53:31.930Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":16,"duplicates":17,"related":18,"reserved_at":9,"published_at":20,"modified_at":21,"state":9,"summary":22,"references_raw":24,"kevs":40,"epss":9,"epss_history":41,"metrics":42,"affected":43},"MGASA-2014-0496","Updated glibc packages fix CVE-2014-7817\n\nThe function wordexp() fails to properly handle the WRDE_NOCMD\nflag when processing arithmetic inputs in the form of \"$((... ``))\"\nwhere \"...\" can be anything valid. The backticks in the arithmetic\nepxression are evaluated by in a shell even if WRDE_NOCMD forbade\ncommand substitution. This allows an attacker to attempt to pass\ndangerous commands via constructs of the above form, and bypass\nthe WRDE_NOCMD flag. This update fixes the issue (CVE-2014-7817).\n",null,[],[],[],[14],{"_key":15},"CVE-2014-7817",[],[],[19],{"_key":15},"2014-11-26T17:29:06Z","2026-04-16T06:25:20.713034829Z",{"cisa_kev":23,"cisa_ransomware":23,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[25,31,36],{"url":26,"sources":27,"tags":29},"https://advisories.mageia.org/MGASA-2014-0496.html",[28],"osv_mageia",[30],"Advisory",{"url":32,"sources":33,"tags":34},"https://bugs.mageia.org/show_bug.cgi?id=14651",[28],[35],"REPORT",{"url":37,"sources":38,"tags":39},"https://bugzilla.redhat.com/show_bug.cgi?id=1157689",[28],[35],[],[],[],[44,56],{"ecosystem":45,"name":46,"vendor":47,"product":46,"cpe_part":9,"purl_type":48,"purl_namespace":47,"purl_name":46,"source":9,"versions":49},"Mageia","glibc","mageia","rpm",[50],{"version":51,"is_range":52,"range_type":53,"version_start":9,"version_start_type":9,"version_end":54,"version_end_type":55,"fixed_in":9},"lt2_17_7_6_mga3",true,"ecosystem","2.17-7.6.mga3","excluding",{"ecosystem":45,"name":46,"vendor":47,"product":46,"cpe_part":9,"purl_type":48,"purl_namespace":47,"purl_name":46,"source":9,"versions":57},[58],{"version":59,"is_range":52,"range_type":53,"version_start":9,"version_start_type":9,"version_end":60,"version_end_type":55,"fixed_in":9},"lt2_18_9_5_mga4","2.18-9.5.mga4"]