A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This vulnerability can be used to gain root access and/or cause Denial Of Service by crashing the system. https://lnkd.in/d4-vCtjM Upgrade now Debian/Ubuntu: sudo apt-get update sudo apt-get upgrade RHEL/CentOS/Red Hat/Fedora Linux sudo yum update OpenSUSE/Suse Linux sudo zypper refresh sudo zypper update Arch Linux sudo pacman -Syu Gentoo Linux emerge --sync sudo emerge --update --deep --with-bdeps=y @world Alpine is not affected as it uses musl as its libc.
Omg
Software Developer
7moPoC link https://github.com/RickdeJager/CVE-2023-4911 but as stated it is not fully working on all distros, i'd recommend using this fork instead as it is more up to date https://github.com/lrustand/CVE-2023-4911