Bruno Haible

1 exploit Active since Oct 2018
CVE-2018-17942 WRITEUP HIGH WRITEUP
Gnulib < 2018-09-23 - Heap-Based Buffer Overflow in convert_to_decimal Function
The convert_to_decimal function in vasnprintf.c in Gnulib before 2018-09-23 has a heap-based buffer overflow because memory is not allocated for a trailing '\0' character during %f processing.
CVSS 8.8