INFSA-2023:6661: gmp security update
Information about definition
Identificator: INFSA-2023:6661
Type: security
Release date: 2025-03-05 17:25:15 UTC
Information about package
The gmp packages contain GNU MP, a library for arbitrary precision arithmetics, signed integers operations, rational numbers, and floating point numbers.
Vulnerabilities description
- CVE-2021-43618
GNU Multiple Precision Arithmetic Library (GMP) through 6.2.1 has an mpz/inp_raw.c integer overflow and resultant buffer overflow via crafted input, leading to a segmentation fault on 32-bit platforms.
Severity level
| CVE | Score CVSS 2.0 | Score CVSS 3.x | Score CVSS 4.0 |
|---|---|---|---|
|
NIST — CVE-2021-43618
|
no information | 6.2 | no information |
Updated packages