Suggestions search

All statuses

Filter by:

With package: mtrace

Found 14 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2023-4806

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months, 1 week ago

Glibc: potential use-after-free in getaddrinfo()

A flaw was found in glibc. In an extremely rare situation, the getaddrinfo function may access memory that has been freed, resulting in an application crash. This issue is only exploitable when a NSS module implements only the _nss_*_gethostbyname2_r and _nss_*_getcanonname_r hooks without implementing the _nss_*_gethostbyname3_r hook. The resolved name should return a large number of IPv6 and IPv4, and the call to the getaddrinfo function should have the AF_INET6 address family with AI_CANONNAME, AI_ALL and AI_V4MAPPED as flags.

References

http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20240125-0008/
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4806 x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4806 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237782 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20240125-0008/ x_transferred

Affected products

glibc

compat-glibc

Matching in nixpkgs

pkgs.libc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.iconv

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.libiconv

None

nixos-unstable -
- nixpkgs-unstable 2.40

pkgs.glibcInfo

GNU Info manual of the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_multi

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocales

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_memusage

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocalesUtf8

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.tests.hardeningFlags.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

Package maintainers

@Ma27 Maximilian Bosch <maximilian@mbosch.me>
@ConnorBaker Connor Baker <ConnorBaker01@gmail.com>

Untriaged

Permalink CVE-2023-5156

7.5 HIGH

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months, 1 week ago

Glibc: dos due to memory leak in getaddrinfo.c

A flaw was found in the GNU C Library. A recent fix for CVE-2023-4806 introduced the potential for a memory leak, which may result in an application crash.

References

http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
https://security.gentoo.org/glsa/202402-01
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://security.gentoo.org/glsa/202402-01
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://security.gentoo.org/glsa/202402-01
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://security.gentoo.org/glsa/202402-01
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://security.gentoo.org/glsa/202402-01
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/4
http://www.openwall.com/lists/oss-security/2023/10/03/5
http://www.openwall.com/lists/oss-security/2023/10/03/6
http://www.openwall.com/lists/oss-security/2023/10/03/8
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT
https://sourceware.org/bugzilla/show_bug.cgi?id=30884
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed…
http://www.openwall.com/lists/oss-security/2023/10/03/4 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/6 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
https://access.redhat.com/security/cve/CVE-2023-5156 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2240541 issue-tracking x_refsource_REDHAT x_transferred
https://security.gentoo.org/glsa/202402-01 x_transferred
https://sourceware.org/bugzilla/show_bug.cgi?id=30884 x_transferred
https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=ec6b95c3303c700eb89eebed… x_transferred

Affected products

glibc

==2.39

compat-glibc

Matching in nixpkgs

pkgs.libc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.iconv

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.libiconv

None

nixos-unstable -
- nixpkgs-unstable 2.40

pkgs.glibcInfo

GNU Info manual of the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_multi

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocales

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_memusage

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocalesUtf8

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.tests.hardeningFlags.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

Package maintainers

@Ma27 Maximilian Bosch <maximilian@mbosch.me>
@ConnorBaker Connor Baker <ConnorBaker01@gmail.com>

Untriaged

Permalink CVE-2023-4813

5.9 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): HIGH
Privileges required (PR): NONE
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): NONE
Integrity impact (I): NONE
Availability impact (A): HIGH

created 6 months, 1 week ago

Glibc: potential use-after-free in gaih_inet()

A flaw was found in glibc. In an uncommon situation, the gaih_inet function may use memory that has been freed, resulting in an application crash. This issue is only exploitable when the getaddrinfo function is called and the hosts database in /etc/nsswitch.conf is configured with SUCCESS=continue or SUCCESS=merge.

References

http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/8
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
https://security.netapp.com/advisory/ntap-20231110-0003/
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4813 x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT
http://www.openwall.com/lists/oss-security/2023/10/03/8 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:7409 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4813 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2237798 issue-tracking x_refsource_REDHAT x_transferred
https://security.netapp.com/advisory/ntap-20231110-0003/ x_transferred

Affected products

glibc

*
==2.36

compat-glibc

Matching in nixpkgs

pkgs.libc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.iconv

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.libiconv

None

nixos-unstable -
- nixpkgs-unstable 2.40

pkgs.glibcInfo

GNU Info manual of the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_multi

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocales

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc_memusage

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibcLocalesUtf8

Locale information for the GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.unixtools.getconf

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.tests.hardeningFlags.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsStdenvUnsupp

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-gcc.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitEnabled

None

nixos-unstable -
- nixpkgs-unstable

pkgs.tests.hardeningFlags-clang.glibcxxassertionsExplicitDisabled

None

nixos-unstable -
- nixpkgs-unstable

Package maintainers

@Ma27 Maximilian Bosch <maximilian@mbosch.me>
@ConnorBaker Connor Baker <ConnorBaker01@gmail.com>

Untriaged

Permalink CVE-2023-4911

7.8 HIGH

CVSS version: 3.1
Attack vector (AV): LOCAL
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): HIGH
Availability impact (A): HIGH

created 6 months, 1 week ago

Glibc: buffer overflow in ld.so leading to privilege escalation

A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.

References

http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat…
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation…
http://seclists.org/fulldisclosure/2023/Oct/11
http://www.openwall.com/lists/oss-security/2023/10/03/2
http://www.openwall.com/lists/oss-security/2023/10/03/3
http://www.openwall.com/lists/oss-security/2023/10/05/1
http://www.openwall.com/lists/oss-security/2023/10/13/11
http://www.openwall.com/lists/oss-security/2023/10/14/3
http://www.openwall.com/lists/oss-security/2023/10/14/5
http://www.openwall.com/lists/oss-security/2023/10/14/6
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
https://security.gentoo.org/glsa/202310-03
https://security.netapp.com/advisory/ntap-20231013-0006/
https://www.debian.org/security/2023/dsa-5514
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023… government-resource
RHBA-2024:2413 vendor-advisory x_refsource_REDHAT
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023… government-resource
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023… government-resource
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023… government-resource
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT
https://access.redhat.com/security/cve/CVE-2023-4911 x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege…
https://www.qualys.com/cve-2023-4911/
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT
https://www.exploit-db.com/exploits/52479
http://packetstormsecurity.com/files/174986/glibc-ld.so-Local-Privilege-Escalat… x_transferred
http://packetstormsecurity.com/files/176288/Glibc-Tunables-Privilege-Escalation… x_transferred
http://seclists.org/fulldisclosure/2023/Oct/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/2 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/03/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/05/1 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/13/11 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/3 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/5 x_transferred
http://www.openwall.com/lists/oss-security/2023/10/14/6 x_transferred
RHSA-2023:5453 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5454 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5455 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2023:5476 vendor-advisory x_refsource_REDHAT x_transferred
RHSA-2024:0033 vendor-advisory x_refsource_REDHAT x_transferred
https://access.redhat.com/security/cve/CVE-2023-4911 x_transferred x_refsource_REDHAT vdb-entry
RHBZ#2238352 issue-tracking x_refsource_REDHAT x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
https://security.gentoo.org/glsa/202310-03 x_transferred
https://security.netapp.com/advisory/ntap-20231013-0006/ x_transferred
https://www.debian.org/security/2023/dsa-5514 x_transferred
https://www.qualys.com/2023/10/03/cve-2023-4911/looney-tunables-local-privilege… x_transferred
https://www.qualys.com/cve-2023-4911/ x_transferred
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023… government-resource

Affected products

glibc

<2.39
*

compat-glibc

redhat-virtualization-host

redhat-release-virtualization-host

Matching in nixpkgs

pkgs.libc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.glibc

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.iconv

GNU C Library

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.getent

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.locale

None

nixos-unstable -
- nixpkgs-unstable 2.40-66

pkgs.mtrace

Perl script used to interpret and provide human readable output of the trace log contained in the file mtracedata, whose contents were produced by mtrace(3)