Looney Tunables: New Linux Flaw Enables Privilege Escalation on Major Distributions

A new Linux security vulnerability dubbed Looney Tunables has been discovered in the GNU C library's ld.so dynamic loader that, if successfully exploited, could lead to a local privilege escalation and allow a threat actor to gain root privileges. Tracked as CVE-2023-4911 (CVSS score: 7.8), the issue is a buffer overflow that resides in the dynamic loader's processing of the GLIBC_TUNABLES

Posted from: Click here for the full article.

留言

此網誌的熱門文章

OttoKit WordPress Plugin Admin Creation Vulnerability Under Active Exploitation

Cisco Releases Urgent Patch to Fix Critical Flaw in Emergency Responder Systems

CISA Adds NAKIVO Vulnerability to KEV Catalog Amid Active Exploitation