[LFS Trac] #2790: glibc security patches

LFS Trac Sun, 07 Nov 2010 21:50:40 -0800

#2790: glibc security patches
-----------------------------------------+----------------------------------
 Reporter:  bdu...@…                     |       Owner:  lfs-b...@…             
      
     Type:  task                         |      Status:  new                    
      
 Priority:  normal                       |   Milestone:  6.8                    
      
Component:  Book                         |     Version:  SVN                    
      
 Severity:  normal                       |    Keywords:                         
      
-----------------------------------------+----------------------------------
 We should probably add two security patches:


  * glibc-2.12.1-ld_audit_fix-1.patch

 Fixes a security vulnerability and makes LD_AUDIT behave same as
 LD_PRELOAD

  * glibc-2.12.1-origin_fix-1.patch

  Fixes a security vulnerability, described in detail at
                     http://marc.info/?l=full-
 disclosure&m=128739684614072&w=2,
 which allows a local attacker to gain root if they can
 create a hard link to a setuid root binary.

 Both are in the patches repository.

-- 
Ticket URL: <http://wiki.linuxfromscratch.org/lfs/ticket/2790>
LFS Trac <http://wiki.linuxfromscratch.org/lfs/>
Linux From Scratch: Your Distro, Your Rules.
-- 
http://linuxfromscratch.org/mailman/listinfo/lfs-book
FAQ: http://www.linuxfromscratch.org/lfs/faq.html
Unsubscribe: See the above information page

[LFS Trac] #2790: glibc security patches

Reply via email to