glibc-doc (AlmaLinux:10) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the AlmaLinux:10 package glibc-doc, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (7)
CVE-2026-0861 — CVSS 8.4 (high): Passing too large an alignment to the memalign suite of functions (memalign, posix_memalign, aligned_alloc) in the GNU C Library version…
CVE-2026-0915 — CVSS 7.5 (high): Calling getnetbyaddr or getnetbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries…
CVE-2026-4046 — CVSS 7.5 (high): The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the…
CVE-2026-4437 — CVSS 7.5 (high): Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C Library…
CVE-2025-8058: The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be…
CVE-2025-5702 — CVSS 5.6 (medium): The strcmp implementation optimized for the Power10 processor in the GNU C Library version 2.39 and later writes to vector registers v20 to…
CVE-2026-4438 — CVSS 5.4 (medium): Calling gethostbyaddr or gethostbyaddr_r with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library…