Gnu · Gnu C Library · CVE-2017-17426
**Name of the Vulnerable Software and Affected Versions**
GNU C Library (aka glibc or libc6) version 2.26
**Description**
The issue arises from the malloc function in the GNU C Library, which could return a memory block that is too small when attempting to allocate an object of size close to SIZE MAX. This could potentially lead to a subsequent heap overflow due to the per-thread cache feature lacking an integer overflow check.
**Recommendations**
For GNU C Library (aka glibc or libc6) version 2.26, consider updating to a newer version that includes the necessary integer overflow check in the malloc function to prevent potential heap overflows.