PatchSiren

Uclibc CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH Uclibc CVE published 2017-01-27

CVE-2016-6264

CVE-2016-6264 is a high-severity denial-of-service issue in the ARM memset implementation used by uClibc and uClibc-ng. A negative length value can trigger a crash, making affected libc builds a stability risk for systems that depend on them.