glibc 2.1.9x and previous versions does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
conectiva linux 4.0es |
||
conectiva linux 4.1 |
||
conectiva linux 5.1 |
||
conectiva linux 6.0 |
||
immunix immunix 7.0_beta |
||
conectiva linux 4.0 |
||
conectiva linux ecommerce |
||
conectiva linux graficas |
||
conectiva linux 4.2 |
||
conectiva linux 5.0 |
||
debian debian linux 2.3 |
||
redhat linux 7.0 |