CVE-2026-4046

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions GNU C Library versions 2.43 and earlier

Description The iconv() function in the GNU C Library may experience a crash due to an assertion failure when processing inputs from the IBM1390 or IBM1399 character sets. This could potentially be exploited to remotely crash an application.

Recommendations Remove the IBM1390 and IBM1399 character sets from systems that do not require them.

Fix

Assertion Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-617

Related Identifiers

ALSA-2026:20587

ALSA-2026:20594

BDU:2026-05928

CVE-2026-4046

ECHO-511D-493A-869E

OESA-2026-2031

OESA-2026-2032

OESA-2026-2033

OESA-2026-2034

OESA-2026-2035

OPENSUSE-SU-2026:10722-1

RHSA-2026:12740

SUSE-SU-2026:1498-1

SUSE-SU-2026:1501-1

Affected Products

Gnu C Library

CVE-2026-4046

Weakness Enumeration

Related Identifiers

Affected Products

References · 46