Gentoo 2514 Published by

A glibc update is available for Gentoo Linux

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Gentoo Linux Security Advisory GLSA 200408-16
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
http://security.gentoo.org/
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Severity: Low
Title: glibc: Information leak with LD_DEBUG
Date: August 16, 2004
Bugs: #59526
ID: 200408-16

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -

Synopsis
=======

glibc contains an information leak vulnerability allowing the debugging of SUID binaries.



Background
=========

The GNU C library defines various Unix-like "system calls" and other basic facilities needed for a standard POSIX-like application to operate.

Affected packages
================

-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 sys-libs/glibc = 2.3.2-r11
2 sys-libs/glibc = 2.3.3.20040420-r1
3 sys-libs/glibc = 2.3.4.20040619-r1
4 sys-libs/glibc = 2.3.4.20040619-r1
5 sys-libs/glibc