Security Bulletin: Vulnerabilities in GNU C affects IBM Netezza Appliance
Details
CVSS v3
7.5
NVD published
2026-01-20 14:16:07
EPSS
<0.1% probability · 21.3th percentile — 2026-04-22
Affected versions
cpe:2.3:a:gnu:glibc:*:*:*:*:*:*:*:*
Summary
Calling wordexp with WRDE_REUSE in conjunction with WRDE_APPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the we_wordv member, which on subsequent calls to wordfree may abort the process.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.