AZL-6444

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-6444.json

JSON Data

https://api.test.osv.dev/v1/vulns/AZL-6444

Upstream

CVE-2021-43618

Published

2021-11-15T04:15:06Z

Modified

2026-04-01T05:20:19.487341Z

Severity

7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator

Summary

CVE-2021-43618 affecting package gmp for versions less than 6.2.1-2

Details

GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.

References

https://nvd.nist.gov/vuln/detail/CVE-2021-43618

Affected packages

Azure Linux:2 / gmp

Package

Name: gmp
Purl: pkg:rpm/azure-linux/gmp

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

6.2.1-2

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-6444.json"