Buffer overflow in The Gnu C Library Glibc

CVE-2026-5450

Calling the scanf family of functions with a %mc (malloc'd character match) in the GNU C Library version 2.7 to version 2.43 with a format width specifier with an explicit width greater than 1024 could result in a one byte heap buffer over…

Vulnerability class: Buffer Overflow

EPSS: 0.001 (22.2th percentile) — read the EPSS interpretation.

Affected products

The Gnu C Library Glibc — versions 2.7

Weakness classification (CWE)

CWE-122 — Heap-based Buffer Overflow

References

sourceware.org/bugzilla/show_bug.cgi (issue-tracking)
inbox.sourceware.org/libc-announce/b11f0003-6ec1-4bd6-b9de-9e38a4efeca3@redhat… (mailing-list)