Fluid Attacks Database

Description

The iconv() function in the GNU C Library versions 2.39 and older may overflow the output buffer passed to it by up to 4 bytes when converting strings to the ISO-2022-CN-EXT character set, which may be used to crash an application or overwrite a neighbouring variable.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	glibc	=2.31-13 \|\| =2.31-13+deb11u1 \|\| =2.31-13+deb11u2 \|\| =2.31-13+deb11u3 \|\| =2.31-13+deb11u4 \|\| =2.31-13+deb11u5 \|\| =2.31-13+deb11u6 \|\| =2.31-13+deb11u7 \|\| =2.31-13+deb11u8 \|\| >=0 <2.31-13+deb11u9	2.31-13+deb11u9
debian 12	glibc	=2.36-9 \|\| =2.36-9+deb12u1 \|\| =2.36-9+deb12u2 \|\| =2.36-9+deb12u3 \|\| =2.36-9+deb12u4 \|\| =2.36-9+deb12u5 \|\| >=0 <2.36-9+deb12u6	2.36-9+deb12u6
debian 13	glibc	>=0 <2.37-18	2.37-18
debian 14	glibc	>=0 <2.37-18	2.37-18
rpm rhel8	glibc	<0:2.28-251.el8_10.1	0:2.28-251.el8_10.1
rpm rhel9.0	glibc	<0:2.34-28.el9_0.6	0:2.34-28.el9_0.6
rpm rhel9	glibc	<0:2.34-100.el9_4.2	0:2.34-100.el9_4.2
rpm rhel8.6	glibc	<0:2.28-189.10.el8_6	0:2.28-189.10.el8_6
rpm rhel6	nss_db	-	-
rpm rhel6	glibc	-	-

1-10 of 13

Aliases

1. CVE-2024-29612. NVD-2024-29613. OSV-DEBIAN-2024-29614. OSV-2024-29615. SECURITY-TRACKER-CVE-2024-2961

References

1. https://vulncheck.com/cve/CVE-2024-29612. https://github.com/projectdiscovery/nuclei-templates/blob/main/dast/cves/2024/CVE-2024-2961.yaml3. https://github.com/mattaperkins/FIX-CVE-2024-29614. https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/magento_xxe_to_glibc_buf_overflow.rb

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.