coreutils/gnulib

Releases326

Frequency1 month 4 days

Last Release about 2 years ago

Stars337

upstream mirror

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-17942 ↗	Oct 3, 2018Wednesday, 3 October 2018, 08:29	—	6.8 MEDIUM
The convert_to_decimal function in vasnprintf.c in Gnulib before 2018-09-23 has a heap-based buffer overflow because memory is not allocated for a trailing '\0' character during %f processing.