Iain Buclaw

**Name of the Vulnerable Software and Affected Versions** GNU C Library (aka glibc or libc6) version 2.26 **Description** The issue arises from the malloc function in the GNU C Library, which could return a memory block that is too small when attempting to allocate an object of size close to SIZE MAX. This could potentially lead to a subsequent heap overflow due to the per-thread cache feature lacking an integer overflow check. **Recommendations** For GNU C Library (aka glibc or libc6) version 2.26, consider updating to a newer version that includes the necessary integer overflow check in the malloc function to prevent potential heap overflows.