7.2 High
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
0.4%
The glibc packages contain the standard C libraries used by multiple
programs on the system. These packages contain the standard C and the
standard math libraries. Without these two libraries, a Linux system cannot
function properly.
It was discovered that the glibc dynamic linker/loader did not perform
sufficient safety checks when loading dynamic shared objects (DSOs) to
provide callbacks for its auditing API during the execution of
privileged programs. A local attacker could use this flaw to escalate
their privileges via a carefully-chosen system DSO library containing
unsafe constructors. (CVE-2010-3856)
Red Hat would like to thank Ben Hawkes and Tavis Ormandy for reporting this
issue.
All users should upgrade to these updated packages, which contain a
backported patch to correct this issue.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
RedHat | 5 | i386 | glibc-common | < 2.5-49.el5_5.7 | glibc-common-2.5-49.el5_5.7.i386.rpm |
RedHat | 5 | ppc | glibc-common | < 2.5-49.el5_5.7 | glibc-common-2.5-49.el5_5.7.ppc.rpm |
RedHat | 5 | ppc64 | glibc-devel | < 2.5-49.el5_5.7 | glibc-devel-2.5-49.el5_5.7.ppc64.rpm |
RedHat | 5 | s390x | glibc | < 2.5-49.el5_5.7 | glibc-2.5-49.el5_5.7.s390x.rpm |
RedHat | 5 | ppc | glibc-devel | < 2.5-49.el5_5.7 | glibc-devel-2.5-49.el5_5.7.ppc.rpm |
RedHat | 5 | ia64 | glibc-utils | < 2.5-49.el5_5.7 | glibc-utils-2.5-49.el5_5.7.ia64.rpm |
RedHat | 5 | src | glibc | < 2.5-49.el5_5.7 | glibc-2.5-49.el5_5.7.src.rpm |
RedHat | 5 | s390x | glibc-common | < 2.5-49.el5_5.7 | glibc-common-2.5-49.el5_5.7.s390x.rpm |
RedHat | 5 | i386 | glibc-utils | < 2.5-49.el5_5.7 | glibc-utils-2.5-49.el5_5.7.i386.rpm |
RedHat | 5 | ppc64 | glibc | < 2.5-49.el5_5.7 | glibc-2.5-49.el5_5.7.ppc64.rpm |