> IMHO making sure that programs are restarted after applying the security > update should be enough, but I am not fully sure about my analysis, so a > confirmation would be nice to have.
The machines in question have been rebooted a few times after upgrading. I will try to get a full backtrace next week. Sadly, I won't have access to the systems over the weekend. > It wonder if it could be that the process is started with the > old libc and is later dlopening the new nss libraries. Going to investigate if there are old libs lying around somewhere in the system on monday. Greetings