DEBIAN-CVE-2019-1010022

DEBIAN-CVE-2019-1010022 PUBLISHED CVSS 9.800000190734863 CRITICAL

GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may bypass stack guard protection. The component is: nptl. The attack vector is: Exploit stack buffer overflow vulnerability and use this bypass vulnerability to bypass stack guard. NOTE: Upstream comments indicate "this is being treated as a non-security bug and no real threat.

Risk Scores

CVSS 3.0

9.800000190734863

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Affected Products

Vendor	Product	Versions
Debian:13	glibc	0, 2.43-2, 2.43-1
Debian:14	glibc	2.42-7, 2.42-11, *
Debian:11	glibc	2.40-6, 2.40-6, 2.40-7
Debian:12	glibc	2.41-12, 2.41-13, 2.41-13

Exploit Intelligence

summary.html (github-poc)
dhi-victoriametrics-vmstorage.vex.json (github-poc)
vote.json (github-poc)
dockerscan.yml (github-poc)
security_scans.sh (github-poc)

Timeline

Jul 15, 2019 CVE Published
Apr 28, 2026 CVE Updated

References

https://security-tracker.debian.org/tracker/CVE-2019-1010022 advisory

Open in Interactive Console →