CVE-2026-0861

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GNU C Library versions 2.30 through 2.42

Description Providing an excessively large alignment value to the memalign family of functions – including memalign, posix memalign, aligned alloc, valloc, and pvalloc – within the GNU C Library can lead to an integer overflow. This overflow may result in heap corruption.

Recommendations Update to a version beyond 2.42.

Fix

DoS

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALSA-2026:1334

ALSA-2026:2786

AZL-74547

AZL-74636

BDU:2026-00915

CVE-2026-0861

ECHO-9177-1522-4A81

MGASA-2026-0022

OESA-2026-1198

OESA-2026-1199

OESA-2026-1200

OESA-2026-1201

OESA-2026-1202

OPENSUSE-SU-2026:10662-1

OPENSUSE-SU-2026:20133-1

RHSA-2026:1334

RHSA-2026:2786

RHSA-2026:7316

SUSE-SU-2026:0347-1

SUSE-SU-2026:0371-1

SUSE-SU-2026:0499-1

SUSE-SU-2026:0827-1

SUSE-SU-2026:0896-1

SUSE-SU-2026:20178-1

SUSE-SU-2026:20198-1

SUSE-SU-2026:20527-1

SUSE-SU-2026:20536-1

SUSE-SU-2026:20544-1

SUSE-SU-2026:20608-1

USN-8005-1

Affected Products

Gnu C Library

Linuxmint

Red Os

Rocky Linux

Ubuntu

CVE-2026-0861

Weakness Enumeration

Related Identifiers

Affected Products

References · 107