vulnerability
Huawei EulerOS: CVE-2025-8058: glibc security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 10 | (AV:N/AC:L/Au:N/C:C/I:C/A:C) | Oct 10, 2025 | Oct 24, 2025 | Dec 4, 2025 |
Severity
10
CVSS
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Published
Oct 10, 2025
Added
Oct 24, 2025
Modified
Dec 4, 2025
Description
The regcomp function in the GNU C library version from 2.4 to 2.41 is
subject to a double free if some previous allocation fails. It can be
accomplished either by a malloc failure or by using an interposed malloc
that injects random malloc failures. The double free can allow buffer
manipulation depending of how the regex is constructed. This issue
affects all architectures and ABIs supported by the GNU C library.
Solutions
huawei-euleros-2_0_sp13-upgrade-glibchuawei-euleros-2_0_sp13-upgrade-glibc-all-langpackshuawei-euleros-2_0_sp13-upgrade-glibc-commonhuawei-euleros-2_0_sp13-upgrade-glibc-locale-archivehuawei-euleros-2_0_sp13-upgrade-glibc-locale-sourcehuawei-euleros-2_0_sp13-upgrade-libnslhuawei-euleros-2_0_sp13-upgrade-nscd
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.