Explore top 10 tips to secure your open-source projects now. Read More
×
Gnu C library could be made to run programs as an administrator.
Software Description:
- glibc: GNU C Library
- eglibc: GNU C Library
Details:
It was discovered that the GNU C library did not properly handle memory
when processing environment variables for setuid programs. A local attacker
could use this in combination with another vulnerability to gain
administrative privileges.
The problem can be corrected by updating your system to the following package versions: Ubuntu 17.04: libc6 2.24-9ubuntu2.2 Ubuntu 16.10: libc6 2.24-3ubuntu2.2 Ubuntu 16.04 LTS: libc6 2.23-0ubuntu9 Ubuntu 14.04 LTS: libc6 2.19-0ubuntu6.13 After a standard system update you need to reboot your computer to make all the necessary changes.
CVE-2017-1000366
Get the latest Linux and open source security news straight to your inbox.