CVE-2016-3706

CVE numbers: CVE-2016-3706 [Bulletin-CVE-2016-3706]
Coordinated disclosure?: unknown
Categories: Qualcomm components
Details: Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in the GNU C Library (aka glibc or libc6) allows remote attackers to cause a denial of service (crash) via vectors involving hostent conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-4458. [NIST-CVE-2016-3706]
Discovered by: on: Unknown
Reported on: 2017-12-01 [Bulletin-CVE-2016-3706]
Fixed on: 2016-09-09 [QC-CR#1058691]
Fix released on: 2017-12-05 [Bulletin-CVE-2016-3706]
Affected versions: regex:
Affected devices:
Affected manufacturers: Qualcomm [Bulletin-CVE-2016-3706]
Fixed versions:
Submission: by: Daniel Carter, on: 2019-07-26

AndroidVulnerabilities.org