CVE-2015-8985
MEDIUMGNU Glibc < 2.28 - Denial of Service
Title source: ruleDescription
The pop_fail_stack function in the GNU C Library (aka glibc or libc6) allows context-dependent attackers to cause a denial of service (assertion failure and application crash) via vectors related to extended regular expression processing.
References (4)
Scores
CVSS v3
5.9
EPSS
0.0020
EPSS Percentile
41.7%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Classification
CWE
CWE-19
Status
published
Affected Products (2)
gnu/glibc
< 2.28
n/a/n/a
Timeline
Published
Mar 20, 2017
Tracked Since
Feb 18, 2026