Gnu · Gnulib · CVE-2018-17942
**Name of the Vulnerable Software and Affected Versions**
Gnulib versions prior to 2018-09-23
**Description**
The issue is related to a heap-based buffer overflow in the `convert to decimal` function, located in the vasnprintf.c file. This overflow occurs because memory is not allocated for a trailing '0' character during %f processing.
**Recommendations**
For versions prior to 2018-09-23, update Gnulib to a version released after 2018-09-23 to resolve the issue.