Incompatible Execution Contexts in GNU C Library on ARM EABI Platforms

Incompatible Execution Contexts in GNU C Library on ARM EABI Platforms

CVE-2016-6323 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:N/A:P

The makecontext function in the GNU C Library (aka glibc or libc6) before 2.25 creates execution contexts incompatible with the unwinder on ARM EABI (32-bit) platforms, which might allow context-dependent attackers to cause a denial of service (hang), as demonstrated by applications compiled using gccgo, related to backtrace generation.

Learn more about our Web Application Penetration Testing UK.