Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Certain run-time memory protection mechanisms in the GNU C Library (aka glibc or libc6) print argv[0] and backtrace information, which might allow context-dependent attackers to obtain sensitive information from process memory by executing an incorrect program, as demonstrated by a setuid program that contains a stack-based buffer overflow error, related to the __fortify_fail function in debug/fortify_fail.c, and the __stack_chk_fail (aka stack protection) and __chk_fail (aka FORTIFY_SOURCE) implementations.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GNU C Library敏感信息泄露漏洞
Vulnerability Description
glibc(又名GNU C Library,libc6)是一种按照LGPL许可协议发布的开源免费的C语言编译程序。 GNU C Library (又名glibc或者libc6)打印argv[0]和回溯信息中某些运行时的内存保护机制中存在信息泄露漏洞。上下文攻击者可以通过执行错误程序从执行内存中获取敏感信息。该漏洞已在包含基于栈的缓冲区溢出漏洞的setuid程序中得到证实。该漏洞与debug/fortify_fail.c文件中的__fortify_fail函数,__stack_chk_fail (又名sta
CVSS Information
N/A
Vulnerability Type
N/A