CVE-2004-1453

EPSS 0.08%

發布日:2004/12/31修改日:2026/4/28

也稱為:DEBIAN-CVE-2004-1453

描述

GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program.

受影響套件(1)

Debian/glibcfrom 0, < 2.3.5

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-1453