CVE-1999-0199 – This CVE describes a documentation issue in gli... (How to Fix)

Q: What is the severity of CVE-1999-0199?

CVE-1999-0199 has a CVSS score of 9.8 (CRITICAL). This CVE describes a documentation issue in glibc's tdelete function where the return value behavior when deleting a tree's root was unspecified. This could lead developers to write code that accesses dangling pointers, potentially causing crashes or memory corruption. Only applications using tdelete function with specific patterns are affected.

📋 TL;DR

This CVE describes a documentation issue in glibc's tdelete function where the return value behavior when deleting a tree's root was unspecified. This could lead developers to write code that accesses dangling pointers, potentially causing crashes or memory corruption. Only applications using tdelete function with specific patterns are affected.

💻 Affected Systems

Products:

GNU C Library (glibc)

Versions: All versions before 2.2

Operating Systems: Linux, Unix-like systems using glibc

Default Config Vulnerable: ✅ No

Notes: Only applications that use the tdelete function from search.h and delete the root node of a tree are vulnerable. Most applications are not affected.

📦 What is this software?

Glibc by Gnu

The GNU C Library (glibc) is the core C library for Linux systems, providing essential system calls and basic functions for all C programs. It is a fundamental component that nearly every Linux application depends on.

Learn more about Glibc →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Memory corruption leading to arbitrary code execution, denial of service, or information disclosure in applications using tdelete with root deletion.

🟠

Likely Case

Application crashes or undefined behavior when tdelete is called to delete the root of a tree.

🟢

If Mitigated

No impact if applications don't use tdelete or properly handle its return values.

🌐 Internet-Facing: LOW - Requires specific application code patterns and exploitation is complex.

🏢 Internal Only: LOW - Same as internet facing; requires vulnerable application code.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: NO

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires finding and targeting specific applications that misuse tdelete. No known public exploits exist.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: glibc 2.2 and later

Vendor Advisory: https://ftp.gnu.org/gnu/glibc/glibc-2.2.tar.gz

Restart Required: Yes

Instructions:

1. Update glibc to version 2.2 or later. 2. For source-based systems: compile and install glibc >=2.2. 3. For package managers: use system update commands (apt-get upgrade, yum update, etc.). 4. Restart affected services or reboot system.

🔧 Temporary Workarounds

Avoid tdelete root deletion

all

Modify application code to avoid calling tdelete on the root node of trees

# Review application source code for tdelete usage
# Ensure tdelete is not called on root nodes

🧯 If You Can't Patch

Audit all applications for tdelete usage and root deletion patterns
Implement strict memory protection mechanisms (ASLR, DEP) to reduce exploit impact

🔍 How to Verify

Check if Vulnerable:

Check glibc version: ldd --version | grep glibc. If version is below 2.2, system is vulnerable at library level.

Check Version:

ldd --version | grep glibc

Verify Fix Applied:

Verify glibc version is 2.2 or higher: ldd --version | grep glibc

📡 Detection & Monitoring

Log Indicators:

Application crashes with segmentation faults in code using search/tree functions
Memory corruption errors in application logs

Network Indicators:

None - this is a local memory corruption issue

SIEM Query:

Process crashes with glibc search/tree functions OR segmentation faults in applications using tdelete

📊 Metadata

CVE ID: CVE-1999-0199

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-252

Published: October 6, 2020

Last Updated: November 20, 2024

🔗 References

https://ftp.gnu.org/gnu/glibc/glibc-2.2.tar.gz Product,Vendor Advisory
https://github.com/bminor/glibc/commit/2864e767053317538feafa815046fff89e5a16be#diff-94e8c502f255fdfc346df0e29fd4ef40 Patch,Third Party Advisory
https://www.cee.studio/tdelete.html Exploit,Third Party Advisory
https://ftp.gnu.org/gnu/glibc/glibc-2.2.tar.gz Product,Vendor Advisory
https://github.com/bminor/glibc/commit/2864e767053317538feafa815046fff89e5a16be#diff-94e8c502f255fdfc346df0e29fd4ef40 Patch,Third Party Advisory
https://www.cee.studio/tdelete.html Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-1999-0199, you might also want to check these: