140
Glibc Dynamic Loader Hit By A Nasty Local Privilege Escalation Vulnerability
(www.phoronix.com)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 04 Oct 2023
140 points (95.5% liked)
Linux
48805 readers
775 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 5 years ago
MODERATORS
An interesting fact about the affected versions: It was introduced in 2.34, so there was a comment on hackernews that Red Hat 8 isn't affected because it ships with an earlier version. However, from Red Hat's customer Portal:
So just checking version numbers for vulnerabilities isn't really enough. I had a similar discussion at work lately where a CVE fix was listed in a stable kernel's changelog even though going by the vulnerable versions listed in the CVE itself, that kernel wasn't affected.
So if RHEL is affected, it means Rocky and AlmaLinux is too.