VulnerableCode Package Details - pkg:ebuild/sys-libs/glibc@2.3.4.20040605

Search for packages

Package details: pkg:ebuild/sys-libs/glibc@2.3.4.20040605

Essentials
History (3)

purl	pkg:ebuild/sys-libs/glibc@2.3.4.20040605

Next non-vulnerable version	2.3.4.20040619-r1
Latest non-vulnerable version	2.40-r8
Risk	1.4

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-vx9s-7dkx-aaaq Aliases: CVE-2004-1453	GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program.	2.3.4.20040619-r1 Affected by 0 other vulnerabilities. 2.3.4.20040808 Affected by 0 other vulnerabilities.

Vulnerability

Summary

Fixed by

VCID-vx9s-7dkx-aaaq
Aliases:
CVE-2004-1453

GNU glibc 2.3.4 before 2.3.4.20040619, 2.3.3 before 2.3.3.20040420, and 2.3.2 before 2.3.2-r10 does not restrict the use of LD_DEBUG for a setuid program, which allows local users to gain sensitive information, such as the list of symbols used by the program.

2.3.4.20040619-r1
Affected by 0 other vulnerabilities.

2.3.4.20040808
Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T13:05:00.454640+00:00	Gentoo Importer	Affected by	VCID-vx9s-7dkx-aaaq	https://security.gentoo.org/glsa/200408-16	36.0.0
2024-09-18T07:59:09.356701+00:00	Gentoo Importer	Affected by	VCID-vx9s-7dkx-aaaq	https://security.gentoo.org/glsa/200408-16	34.0.1
2024-01-04T02:03:50.250552+00:00	Gentoo Importer	Affected by	VCID-vx9s-7dkx-aaaq	https://security.gentoo.org/glsa/200408-16	34.0.0rc1