Novell Home

CVE-2010-3856

Common Vulnerabilities and Exposures

[Previous] [Index] [Next]

Upstream information

CVE-2010-3856 at MITRE

Description

ld.so in the GNU C Library (aka glibc or libc6) before 2.11.3, and 2.12.x before 2.12.2, does not properly restrict use of the LD_AUDIT environment variable to reference dynamic shared objects (DSOs) as audit objects, which allows local users to gain privileges by leveraging an unsafe DSO located in a trusted library directory, as demonstrated by libpcprofile.so.

NVD CVSS v2 Base Score: 7.2 (AV:L/AC:L/Au:N/C:C/I:C/A:C)

Novell/SUSE information

Novell Bugzilla entries: 646960, 648020

SUSE Security Advisories:

List of released packages

Product(s) Fixed package version(s) References
openSUSE 11.3
  • glibc-debuginfo >= 2.11.2-3.3.1
  • glibc-debuginfo-32bit >= 2.11.2-3.3.1
  • glibc-debugsource >= 2.11.2-3.3.1
  • glibc-devel-debuginfo >= 2.11.2-3.3.1
  • glibc-devel-debuginfo-32bit >= 2.11.2-3.3.1
  • glibc-locale-debuginfo >= 2.11.2-3.3.1
  • glibc-locale-debuginfo-32bit >= 2.11.2-3.3.1
  • glibc-obsolete-debuginfo >= 2.11.2-3.3.1
  • nscd-debuginfo >= 2.11.2-3.3.1
openSUSE 11.3
  • glibc >= 2.11.2-3.3.1
  • glibc-32bit >= 2.11.2-3.3.1
  • glibc-devel >= 2.11.2-3.3.1
  • glibc-devel-32bit >= 2.11.2-3.3.1
  • glibc-html >= 2.11.2-3.3.1
  • glibc-i18ndata >= 2.11.2-3.3.1
  • glibc-info >= 2.11.2-3.3.1
  • glibc-locale >= 2.11.2-3.3.1
  • glibc-locale-32bit >= 2.11.2-3.3.1
  • glibc-obsolete >= 2.11.2-3.3.1
  • glibc-profile >= 2.11.2-3.3.1
  • glibc-profile-32bit >= 2.11.2-3.3.1
  • nscd >= 2.11.2-3.3.1
SUSE Linux Enterprise Software Development Kit 11 SP1
  • glibc-html >= 2.11.1-0.20.1
  • glibc-info >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Desktop 11 SP1
  • glibc >= 2.11.1-0.20.1
  • glibc-devel >= 2.11.1-0.20.1
  • glibc-i18ndata >= 2.11.1-0.20.1
  • glibc-locale >= 2.11.1-0.20.1
  • nscd >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Desktop 11 SP1
  • glibc >= 2.11.1-0.20.1
  • glibc-32bit >= 2.11.1-0.20.1
  • glibc-devel >= 2.11.1-0.20.1
  • glibc-devel-32bit >= 2.11.1-0.20.1
  • glibc-i18ndata >= 2.11.1-0.20.1
  • glibc-locale >= 2.11.1-0.20.1
  • glibc-locale-32bit >= 2.11.1-0.20.1
  • nscd >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • glibc >= 2.11.1-0.20.1
  • glibc-devel >= 2.11.1-0.20.1
  • glibc-html >= 2.11.1-0.20.1
  • glibc-i18ndata >= 2.11.1-0.20.1
  • glibc-info >= 2.11.1-0.20.1
  • glibc-locale >= 2.11.1-0.20.1
  • glibc-profile >= 2.11.1-0.20.1
  • nscd >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Server 11 SP1
SUSE Linux Enterprise Server 11 SP1 for VMware
  • glibc >= 2.11.1-0.20.1
  • glibc-32bit >= 2.11.1-0.20.1
  • glibc-devel >= 2.11.1-0.20.1
  • glibc-devel-32bit >= 2.11.1-0.20.1
  • glibc-html >= 2.11.1-0.20.1
  • glibc-i18ndata >= 2.11.1-0.20.1
  • glibc-info >= 2.11.1-0.20.1
  • glibc-locale >= 2.11.1-0.20.1
  • glibc-locale-32bit >= 2.11.1-0.20.1
  • glibc-profile >= 2.11.1-0.20.1
  • glibc-profile-32bit >= 2.11.1-0.20.1
  • nscd >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Server 11 SP1
  • glibc >= 2.11.1-0.20.1
  • glibc-devel >= 2.11.1-0.20.1
  • glibc-html >= 2.11.1-0.20.1
  • glibc-i18ndata >= 2.11.1-0.20.1
  • glibc-info >= 2.11.1-0.20.1
  • glibc-locale >= 2.11.1-0.20.1
  • glibc-locale-x86 >= 2.11.1-0.20.1
  • glibc-profile >= 2.11.1-0.20.1
  • glibc-profile-x86 >= 2.11.1-0.20.1
  • glibc-x86 >= 2.11.1-0.20.1
  • nscd >= 2.11.1-0.20.1
sles11-sp1-vmware.x86
sled11-sp1.x86-64
sles11-sp1.s390x
sles11-sp1.x86-64
sled11-sp1.x86
sles11-sp1.ia64
sle11-sp1-sdk.x86
sles11-sp1-vmware.x86-64
sle11-sp1-sdk.x86-64
sles11-sp1.x86
sles11-sp1.ppc
SAT Patch Nr: 3392
SUSE Linux Enterprise Server 11 GA
  • glibc >= 2.9-13.11.1
  • glibc-32bit >= 2.9-13.11.1
  • glibc-devel >= 2.9-13.11.1
  • glibc-devel-32bit >= 2.9-13.11.1
  • glibc-html >= 2.9-13.11.1
  • glibc-i18ndata >= 2.9-13.11.1
  • glibc-info >= 2.9-13.11.1
  • glibc-locale >= 2.9-13.11.1
  • glibc-locale-32bit >= 2.9-13.11.1
  • glibc-profile >= 2.9-13.11.1
  • glibc-profile-32bit >= 2.9-13.11.1
  • nscd >= 2.9-13.11.1
sles11.ppc
SAT Patch Nr: 3406
openSUSE 11.2
  • glibc-debuginfo >= 2.10.1-10.9.1
  • glibc-debuginfo-32bit >= 2.10.1-10.9.1
  • glibc-debugsource >= 2.10.1-10.9.1
  • glibc-devel-debuginfo >= 2.10.1-10.9.1
  • glibc-locale-debuginfo >= 2.10.1-10.9.1
  • glibc-locale-debuginfo-32bit >= 2.10.1-10.9.1
  • glibc-obsolete-debuginfo >= 2.10.1-10.9.1
  • nscd-debuginfo >= 2.10.1-10.9.1
openSUSE 11.2
  • glibc >= 2.10.1-10.9.1
  • glibc-32bit >= 2.10.1-10.9.1
  • glibc-devel >= 2.10.1-10.9.1
  • glibc-devel-32bit >= 2.10.1-10.9.1
  • glibc-html >= 2.10.1-10.9.1
  • glibc-i18ndata >= 2.10.1-10.9.1
  • glibc-info >= 2.10.1-10.9.1
  • glibc-locale >= 2.10.1-10.9.1
  • glibc-locale-32bit >= 2.10.1-10.9.1
  • glibc-obsolete >= 2.10.1-10.9.1
  • glibc-profile >= 2.10.1-10.9.1
  • glibc-profile-32bit >= 2.10.1-10.9.1
  • nscd >= 2.10.1-10.9.1
openSUSE 11.1
  • glibc-debuginfo >= 2.9-2.13.1
  • glibc-debuginfo-32bit >= 2.9-2.13.1
  • glibc-debuginfo-64bit >= 2.9-2.13.1
  • glibc-debugsource >= 2.9-2.13.1
openSUSE 11.1
  • glibc >= 2.9-2.13.1
  • glibc-32bit >= 2.9-2.13.1
  • glibc-64bit >= 2.9-2.13.1
  • glibc-devel >= 2.9-2.13.1
  • glibc-devel-32bit >= 2.9-2.13.1
  • glibc-devel-64bit >= 2.9-2.13.1
  • glibc-html >= 2.9-2.13.1
  • glibc-i18ndata >= 2.9-2.13.1
  • glibc-info >= 2.9-2.13.1
  • glibc-locale >= 2.9-2.13.1
  • glibc-locale-32bit >= 2.9-2.13.1
  • glibc-locale-64bit >= 2.9-2.13.1
  • glibc-obsolete >= 2.9-2.13.1
  • glibc-profile >= 2.9-2.13.1
  • glibc-profile-32bit >= 2.9-2.13.1
  • glibc-profile-64bit >= 2.9-2.13.1
  • nscd >= 2.9-2.13.1
SUSE Linux Enterprise 11 Moblin 2.0
  • glibc-debuginfo >= 2.9-13.11.1
  • glibc-debugsource >= 2.9-13.11.1
SAT Patch Nr: 3385
SUSE Linux Enterprise 11 Moblin 2.0
  • glibc >= 2.9-13.11.1
  • glibc-devel >= 2.9-13.11.1
  • glibc-i18ndata >= 2.9-13.11.1
  • glibc-locale >= 2.9-13.11.1
  • nscd >= 2.9-13.11.1
SAT Patch Nr: 3385
SUSE Linux Enterprise Desktop 10 SP3 for x86
  • glibc >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise Desktop 10 SP3 for AMD64 and Intel EM64T
  • glibc >= 2.4-31.77.76.1
  • glibc-32bit >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-devel-32bit >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • glibc-locale-32bit >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise SDK 10 SP3
SUSE Linux Enterprise Server 10 SP3
SUSE Linux Enterprise Server for SAP 10 SP3
  • glibc >= 2.4-31.77.76.1
  • glibc-32bit >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-devel-32bit >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • glibc-locale-32bit >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-32bit >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise SDK 10 SP3
  • glibc-dceext >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise SDK 10 SP3
  • glibc-dceext >= 2.4-31.77.76.1
  • glibc-dceext-x86 >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-x86 >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise SDK 10 SP3
  • glibc-dceext >= 2.4-31.77.76.1
  • glibc-dceext-64bit >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-64bit >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise SDK 10 SP3
  • glibc-dceext >= 2.4-31.77.76.1
  • glibc-dceext-32bit >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-32bit >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise Server 10 SP3
  • glibc >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise Server 10 SP3
  • glibc >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • glibc-locale-x86 >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-x86 >= 2.4-31.77.76.1
  • glibc-x86 >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise Server 10 SP3
  • glibc >= 2.4-31.77.76.1
  • glibc-64bit >= 2.4-31.77.76.1
  • glibc-devel >= 2.4-31.77.76.1
  • glibc-devel-64bit >= 2.4-31.77.76.1
  • glibc-html >= 2.4-31.77.76.1
  • glibc-i18ndata >= 2.4-31.77.76.1
  • glibc-info >= 2.4-31.77.76.1
  • glibc-locale >= 2.4-31.77.76.1
  • glibc-locale-64bit >= 2.4-31.77.76.1
  • glibc-profile >= 2.4-31.77.76.1
  • glibc-profile-64bit >= 2.4-31.77.76.1
  • nscd >= 2.4-31.77.76.1
sles10-sp3.x86-64
sles10-sp3-debuginfo.x86
sles10-sp3-debuginfo.ia64
sle10-sp3-sdk.x86-64
sles10-sp3.s390x
sles10-sp3-debuginfo.x86-64
sle10-sp3-sdk.ia64
sles10-sp3-debuginfo.ppc
sle10-sp3-sdk.x86
sle10-sp3-sdk.ppc
sled10-sp3.x86
sles10-sp3-debuginfo.s390x
sles10-sp3.ppc
sles10-sp3.x86
sled10-sp3.x86-64
sle10-sp3-sdk.s390x
sles10-sp3.ia64
ZYPP Patch Nr: 7201
SUSE Linux Enterprise 11 Moblin 2.1
  • glibc >= 2.9-13.11.1
  • glibc-i18ndata >= 2.9-13.11.1
  • glibc-locale >= 2.9-13.11.1
  • nscd >= 2.9-13.11.1
SAT Patch Nr: 3386

© 2014 Novell