Description

The iconv() function in the GNU C Library versions 2.43 and earlier may crash due to an assertion failure when converting inputs from the IBM1390 or IBM1399 character sets, which may be used to remotely crash an application. This vulnerability can be trivially mitigated by removing the IBM1390 and IBM1399 character sets from systems that do not need them.

INFO

Published Date :

2026-03-30T17:16:11.021Z

Last Modified :

2026-03-30T17:37:52.633Z

Source :

glibc
AFFECTED PRODUCTS

The following products are affected by CVE-2026-4046 vulnerability.

Vendors Products
The Gnu C Library
  • Glibc
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-4046.

URL Resource
https://nvd.nist.gov/vuln/detail/CVE-2026-4046 cve-icon
https://sourceware.org/bugzilla/show_bug.cgi?id=33980 cve-icon cve-icon cve-icon
https://sourceware.org/git/?p=glibc.git;a=blob_plain;f=advisories/GLIBC-SA-2026-0007;hb=HEAD cve-icon cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2026-4046 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact