Vulnerability Details CVE-2019-1010025
GNU Libc current is affected by: Mitigation bypass. The impact is: Attacker may guess the heap addresses of pthread_created thread. The component is: glibc. NOTE: the vendor's position is "ASLR bypass itself is not a vulnerability.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.5%
CVSS Severity
CVSS v3 Score 5.3
CVSS v2 Score 5.0
References
- https://security-tracker.debian.org/tracker/CVE-2019-1010025
- https://sourceware.org/bugzilla/show_bug.cgi?id=22853
- https://support.f5.com/csp/article/K06046097
- https://support.f5.com/csp/article/K06046097?utm_source=f5support&%3Butm_medium=RSS
- https://ubuntu.com/security/CVE-2019-1010025
- https://security-tracker.debian.org/tracker/CVE-2019-1010025
- https://sourceware.org/bugzilla/show_bug.cgi?id=22853
- https://support.f5.com/csp/article/K06046097
- https://support.f5.com/csp/article/K06046097?utm_source=f5support&%3Butm_medium=RSS
- https://ubuntu.com/security/CVE-2019-1010025