Information on source package newlib

Available versions

ReleaseVersion
jessie2.1.0+git20140818.1a8323b-2
stretch2.4.0.20160527-2
buster3.1.0.20181231-1
bullseye3.3.0-1
bookworm3.3.0-1.3+deb12u1
trixie4.4.0.20231231-4
sid4.4.0.20231231-4

Open issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2021-3420vulnerablevulnerable (no DSA)vulnerable (no DSA)vulnerable (no DSA, ignored)fixedfixedfixedA flaw was found in newlib in versions prior to 4.0.0. Improper overfl ...
CVE-2019-14878vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __d2b function of the newlib libc library, all versions prior t ...
CVE-2019-14877vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __mdiff function of the newlib libc library, all versions prior ...
CVE-2019-14876vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __lshift function of the newlib libc library, all versions prio ...
CVE-2019-14875vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __multiply function of the newlib libc library, all versions pr ...
CVE-2019-14874vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __i2b function of the newlib libc library, all versions prior t ...
CVE-2019-14873vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedIn the __multadd function of the newlib libc library, prior to version ...
CVE-2019-14872vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedThe _dtoa_r function of the newlib libc library, prior to version 3.3. ...
CVE-2019-14871vulnerable (no DSA, ignored)vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedfixedThe REENT_CHECK macro (see newlib/libc/include/sys/reent.h) as used by ...

Open unimportant issues

BugjessiestretchbusterbullseyebookwormtrixiesidDescription
CVE-2024-30949vulnerablevulnerablevulnerablevulnerablevulnerablefixedfixedAn issue in newlib v.4.3.0 allows an attacker to execute arbitrary cod ...

Resolved issues

BugDescription
CVE-2015-2305Integer overflow in the regcomp implementation in the Henry Spencer BS ...

Search for package or bug name: Reporting problems