Off-by-one Error

CVE-2021-3999

High

7.8/10

Summary

A flaw was found in glibc before 2.35. An off-by-one buffer overflow and underflow in 'getcwd()' may lead to memory corruption when the size of the buffer is exactly 1. A local attacker who can control the input buffer and size passed to 'getcwd()' in a setuid program could use this flaw to potentially execute arbitrary code and escalate their privileges on the system.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: HIGH
Scope: UNCHANGED
User Interaction: NONE
Privileges Required: LOW
Confidentiality Impact: HIGH
Availability Impact: HIGH

CWE-193 - Off-by-one Error

A product calculates or uses an incorrect maximum or minimum value that is 1 more, or 1 less, than the correct value.

References

Advisory
Issue
Release Note

Advisory Timeline

Published Aug 24, 2022

Off-by-one Error

CVE-2021-3999

Summary

CWE-193 - Off-by-one Error

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS