CVE-2021-43618
15.11.2021, 04:15
GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| gmplib | gmp | 𝑥 ≤ 6.2.1 |
| debian | debian_linux | 9.0 |
| netapp | active_iq_unified_manager | - |
| netapp | h300s_firmware | - |
| netapp | h500s_firmware | - |
| netapp | h700s_firmware | - |
| netapp | h410s_firmware | - |
| netapp | h410c_firmware | - |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gmp-devel |
| ||||||||||||||||||||||||||||||||||||||||||
| gmp-devel-32bit |
| ||||||||||||||||||||||||||||||||||||||||||
| libgmp10 |
| ||||||||||||||||||||||||||||||||||||||||||
| libgmp10-32bit |
| ||||||||||||||||||||||||||||||||||||||||||
| libgmpxx4 |
| ||||||||||||||||||||||||||||||||||||||||||
| libgmpxx4-32bit |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| gmp |
| ||||||||||||||||||||
| gmp-c |
| ||||||||||||||||||||
| gmp-devel |
|
References