Vulnerability: Incorrect Return Value in memcmp Function for x32 Architecture in GNU C Library

Vulnerability: Incorrect Return Value in memcmp Function for x32 Architecture in GNU C Library

CVE-2019-7309 · LOW Severity

AV:L/AC:L/AU:N/C:N/I:N/A:P

In the GNU C Library (aka glibc or libc6) through 2.29, the memcmp function for the x32 architecture can incorrectly return zero (indicating that the inputs are equal) because the RDX most significant bit is mishandled.

Learn more about our Web Application Penetration Testing UK.