← CVECheck
HomeVulnerabilities

CVE-2003-0689 — HIGH severity vulnerability (The getgrouplist function in GNU libc (glibc) 2.2.4 and earl)

The getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow.

CVE IDCVE-2003-0689
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2003-10-20
Last modified2026-04-16
DescriptionThe getgrouplist function in GNU libc (glibc) 2.2.4 and earlier allows attackers to cause a denial of service (segmentation fault) and execute arbitrary code when a user is a member of a large number of groups, which can cause a buffer overflow.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →