Security Advisory

CVE-2023-4911

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-03 17:25:08

Last updated 2026-05-12 10:18:01

Assigner redhat

State PUBLISHED

Description

A buffer overflow was discovered in the GNU C Librarys dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.

← Browse all CVEs View on cve.org ↗