glibc: Important security update

Users of glibc please be advised of an Important security update that has been identified.
To view this vulnerability, possible remedies, and others please check out the Security Advisories at Critical Watch (http://criticalwatch.com/support/security-advisories.aspx)

RHSA-2010:0793-01: [RHSA-2010:0793-01] Important: glibc security update
Description:
It was discovered that the glibc dynamic linker/loader did not perform

sufficient safety checks when loading dynamic shared objects (DSOs) to

provide callbacks for its auditing API during the execution of

privileged programs. A local attacker could use this flaw to escalate

their privileges via a carefully-chosen system DSO library containing

unsafe constructors. (CVE-2010-3856)Read more at http://www.criticalwatch.com
 

Advertisements