Skip to main content

Glibc CVE-2026-4046

| EUVDEUVD-2026-17144 HIGH
Reachable Assertion (CWE-617)
2026-03-30 glibc GHSA-g7c4-wv7q-gcc6
7.5
CVSS 3.1 · Vendor: glibc
Share

Severity by source

Vendor (glibc) PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
SUSE
HIGH
qualitative
Red Hat
7.5 HIGH
qualitative

Primary rating from Vendor (glibc).

CVSS VectorVendor: glibc

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

5
Re-analysis Queued
Apr 20, 2026 - 22:22 vuln.today
cvss_changed
Patch released
Mar 31, 2026 - 21:13 nvd
Patch available
EUVD ID Assigned
Mar 30, 2026 - 17:36 euvd
EUVD-2026-17144
Analysis Generated
Mar 30, 2026 - 17:36 vuln.today
CVE Published
Mar 30, 2026 - 17:16 nvd
HIGH 7.5

DescriptionCVE.org

The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application.

This vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them.

AnalysisAI

Remote denial of service in GNU C Library (glibc) 2.43 and earlier allows unauthenticated remote attackers to crash applications via malformed input during character set conversion from IBM1390 or IBM1399 encodings. The vulnerability triggers an assertion failure in the iconv() function with high attack reliability (CVSS 7.5, CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H). Proof-of-concept code exists and CISA SSVC assessment confirms the issue is automatable with partial technical impact, making this a practical denial-of-service vector for any networked application processing untrusted character encoding conversions.

Technical ContextAI

The vulnerability resides in the iconv() function, a standard GNU C Library routine for character set conversion. The issue is rooted in CWE-617 (Reachable Assertion), where the conversion logic for IBM1390 and IBM1399 character sets contains assertions that fail under specific malformed input conditions rather than gracefully handling invalid data. IBM1390 and IBM1399 are IBM-specific multi-byte EBCDIC character set encodings used in legacy mainframe systems and some enterprise applications. When iconv() receives specially crafted input claiming to be in these encodings, the assertion failure crashes the process immediately. This affects any application dynamically linked against glibc that invokes iconv() with untrusted or user-supplied encoding parameters, particularly services processing email headers, file metadata, or internationalization (i18n) operations. The CPE identifier cpe:2.3:a:the_gnu_c_library:glibc:*:*:*:*:*:*:*:* indicates all glibc versions up to and including 2.43 are affected.

RemediationAI

Vendors should upgrade glibc to a patched version once released by the GNU C Library maintainers; specific fix version numbers are not yet confirmed in available data. Interim mitigation is immediately available: administrators can remove the IBM1390 and IBM1399 character set conversion tables from affected systems using package-level configuration or filesystem removal if the character sets are not required by local applications. Organizations should review application configurations to disable support for these character sets in iconv() if possible, either through environment variables (e.g., GCONV_PATH manipulation) or application-level configuration. Input validation at the application layer-explicitly whitelisting expected character encodings and rejecting IBM1390/IBM1399 requests-provides defense in depth. Reference the upstream bug report at https://sourceware.org/bugzilla/show_bug.cgi?id=33980 for patching guidance and community updates.

More in Glibc

View all
CVE-2015-0235 CRITICAL POC
10.0 Jan 28

Heap-based buffer overflow in the __nss_hostname_digits_dots function in glibc 2.2, and other 2.x versions before 2.18,

CVE-2015-7547 HIGH POC
8.1 Feb 18

Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in the GNU C

CVE-2023-6246 HIGH POC
8.4 Jan 31

Local privilege escalation in GNU glibc 2.36 and newer arises from a heap-based buffer overflow in __vsyslog_internal, r

CVE-2014-5119 HIGH POC
7.5 Aug 29

Off-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-depe

CVE-2012-4412 HIGH POC
7.5 Oct 09

Integer overflow in string/strcoll_l.c in the GNU C Library (aka glibc or libc6) 2.17 and earlier allows context-depende

CVE-2018-1000001 HIGH POC
7.8 Jan 31

In glibc 2.26 and earlier there is confusion in the usage of getcwd() by realpath() which can be used to write before th

CVE-2023-25139 CRITICAL POC
9.8 Feb 03

sprintf in the GNU C Library (glibc) 2.37 has a buffer overflow (out-of-bounds write) in some situations with a correct

CVE-2021-33574 CRITICAL POC
9.8 May 25

The mq_notify function in the GNU C Library (aka glibc) versions 2.32 and 2.33 has a use-after-free. Rated critical seve

CVE-2019-1010022 CRITICAL POC
9.8 Jul 15

GNU Libc current is affected by: Mitigation bypass. Rated critical severity (CVSS 9.8), this vulnerability is remotely e

CVE-2019-9169 CRITICAL POC
9.8 Feb 26

In the GNU C Library (aka glibc or libc6) through 2.29, proceed_next_node in posix/regexec.c has a heap-based buffer ove

CVE-2017-1000366 HIGH POC
7.8 Jun 19

glibc contains a vulnerability that allows specially crafted LD_LIBRARY_PATH values to manipulate the heap/stack, causin

CVE-2014-9402 HIGH POC
7.8 Feb 24

The nss_dns implementation of getnetbyname in GNU C Library (aka glibc) before 2.21, when the DNS backend in the Name Se

Vendor StatusVendor

Debian

glibc
Release Status Fixed Version Urgency
bullseye vulnerable 2.31-13+deb11u11 -
bullseye (security) vulnerable 2.31-13+deb11u13 -
bookworm vulnerable 2.36-9+deb12u13 -
bookworm (security) vulnerable 2.36-9+deb12u7 -
trixie vulnerable 2.41-12+deb13u2 -
forky vulnerable 2.42-13 -
sid vulnerable 2.42-14 -
(unstable) fixed (unfixed) -

SUSE

Severity: High
Product Status
SUSE Linux Enterprise Live Patching 15 SP4 Affected
SUSE Linux Enterprise Live Patching 15 SP5 Affected
SUSE Linux Enterprise Live Patching 15 SP6 Affected
SLES15-SP5-CHOST-BYOS-SAP-CCloud Fixed
SLES15-SP6-CHOST-BYOS Fixed

Share

CVE-2026-4046 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy