← Back to CVEs

CVE-2011-2168

N/A

Description

Multiple integer overflows in the glob implementation in libc in OpenBSD before 4.9 might allow context-dependent attackers to have an unspecified impact via a crafted string, related to the GLOB_APPEND and GLOB_DOOFFS flags, a different issue than CVE-2011-0418.

CVE Details

CVSS v3.1 ScoreN/A

Published5/24/2011

Last Modified4/29/2026

Sourcenvd

Honeypot Sightings0

Affected Products

openbsd:openbsd

Weaknesses (CWE)

CWE-189

References

http://securityreason.com/achievement_securityalert/97(cve@mitre.org)

http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/glob.c#rev1.35(cve@mitre.org)

http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/glob.c.diff?r1=1.34%3Br2=1.35%3Bf=h(cve@mitre.org)

http://www.securityfocus.com/bid/48004(cve@mitre.org)

http://securityreason.com/achievement_securityalert/97(af854a3a-2127-422b-91ae-364da2661108)

http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/glob.c#rev1.35(af854a3a-2127-422b-91ae-364da2661108)

http://www.openbsd.org/cgi-bin/cvsweb/src/lib/libc/gen/glob.c.diff?r1=1.34%3Br2=1.35%3Bf=h(af854a3a-2127-422b-91ae-364da2661108)

http://www.securityfocus.com/bid/48004(af854a3a-2127-422b-91ae-364da2661108)

IOC Correlations

No correlations recorded

This product uses data from the NVD API but is not endorsed or certified by the NVD.