Vulnerabilities > CVE-2019-14697 - Out-of-bounds Write vulnerability in Musl-Libc Musl
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
musl libc through 1.1.23 has an x87 floating-point stack adjustment imbalance, related to the math/i386/ directory. In some cases, use of this library could introduce out-of-bounds writes that are not present in an application's source code.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Gentoo Local Security Checks |
| NASL id | GENTOO_GLSA-202003-13.NASL |
| description | The remote host is affected by the vulnerability described in GLSA-202003-13 (musl: x87 floating-point stack adjustment imbalance) A flaw in musl libc’s arch-specific math assembly code for i386 was found which can lead to x87 stack overflow in the execution of subsequent math code. Impact : Impact depends on how the application built against musl libc handles the ABI-violating x87 state. Workaround : There is no known workaround at this time. |
| last seen | 2020-03-19 |
| modified | 2020-03-16 |
| plugin id | 134590 |
| published | 2020-03-16 |
| reporter | This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. |
| source | https://www.tenable.com/plugins/nessus/134590 |
| title | GLSA-202003-13 : musl: x87 floating-point stack adjustment imbalance |