CVE-2017-17426

Name of the Vulnerable Software and Affected Versions GNU C Library (aka glibc or libc6) version 2.26

Description The issue arises from the malloc function in the GNU C Library, which could return a memory block that is too small when attempting to allocate an object of size close to SIZE MAX. This could potentially lead to a subsequent heap overflow due to the per-thread cache feature lacking an integer overflow check.

Recommendations For GNU C Library (aka glibc or libc6) version 2.26, consider updating to a newer version that includes the necessary integer overflow check in the malloc function to prevent potential heap overflows.