{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[],"affected_systems_content":"

Syst\u00e8mes Unix bas\u00e9s sur la glibc.

","closed_at":"2000-09-14","content":"## Description\n\nUn utilisateur mal intentionn\u00e9 peut, \u00e0 l'aide de d\u00e9bordements de piles\ndans les programmes ayant le bit suid activ\u00e9, obtenir des droits qu'il\nn'a pas (en g\u00e9n\u00e9ral root), en faisant appel \u00e0 une faille dans la\nbiblioth\u00e8que glibc. Ces programmes sont entre autres :\n\n- /bin/su\n- /bin/mount\n- /bin/umount\n- /usr/bin/\n- /usr/bin/lpq\n- /usr/bin/passwd\n- /usr/bin/at\n- /usr/bin/suidperl\n- /usr/sbin/usernetcl\n- /usr/sbin/userhelper\n\nCes utilitaires sont pour la plupart n\u00e9cessaires aux fonctionnement du\nsyst\u00e8me.\n\n## Solution\n\nAppliquer les correctifs obtenus par les adresses suivantes :\n\n- Debian :\n - http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3-13.diff.gz\n\n - http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3-13.dsc\n\n - http://security.debian.org/dists/stable/updates/main/source/glibc_2.1.3.orig.tar.gz\n\n - http://security.debian.org/dists/stable/updates/main/binary-all/glibc-doc_2.1.3-13_all.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-all/i18ndata_2.1.3-13_all.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-dbg_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-dev_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-pic_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1-prof_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libc6.1_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/libnss1-compat_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/locales_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-alpha/nscd_2.1.3-13_alpha.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-dbg_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-dev_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-pic_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/libc6-prof_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/libc6_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/locales_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-arm/nscd_2.1.3-13_arm.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-dbg_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-dev_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-pic_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libc6-prof_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libc6_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/libnss1-compat_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/locales_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-i386/nscd_2.1.3-13_i386.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-dbg_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-dev_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-pic_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6-prof_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/libc6_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/locales_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-powerpc/nscd_2.1.3-13_powerpc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-dbg_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-dev_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-pic_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6-prof_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/libc6_2.1.3-13_sparc.deb:\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/locales_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/stable/updates/main/binary-sparc/nscd_2.1.3-13_sparc.deb\n\n - http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211-6.3.diff.gz\n\n - http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211-6.3.dsc\n\n - http://security.debian.org/dists/slink/updates/source/glibc_2.0.7.19981211.orig.tar.gz\n\n - http://security.debian.org/dists/slink/updates/binary-i386/libc6-dbg_2.0.7.19981211-6.3_i386.deb\n\n - http://security.debian.org/dists/slink/updates/binary-i386/libc6-dev_2.0.7.19981211-6.3_i386.deb\n\n - http://security.debian.org/dists/slink/updates/binary-i386/libc6-pic_2.0.7.19981211-6.3_i386.deb\n\n - http://security.debian.org/dists/slink/updates/binary-i386/libc6_2.0.7.19981211-6.3_i386.deb\n\n - http://security.debian.org/dists/slink/updates/binary-i386/locales_2.0.7.19981211-6.3_i386.deb\n\n - http://security.debian.org/dists/slink/updates/binary-i386/timezones_2.0.7.19981211-6.3_i386.deb\n- Conectiva :\n - ftp://atualizacoes.conectiva.com.br/4.0/SRPMS/glibc-2.1.2-14cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0/i386/glibc-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0/i386/glibc-devel-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0/i386/glibc-profile-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0/i386/nscd-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0es/SRPMS/glibc-2.1.2-14cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0es/i386/glibc-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0es/i386/glibc-devel-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0es/i386/glibc-profile-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.0es/i386/nscd-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.1/SRPMS/glibc-2.1.2-14cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.1/i386/glibc-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.1/i386/glibc-devel-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.1/i386/glibc-profile-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.1/i386/nscd-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.2/SRPMS/glibc-2.1.2-14cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.2/i386/glibc-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.2/i386/glibc-devel-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.2/i386/glibc-profile-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/4.2/i386/nscd-2.1.2-14cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.0/SRPMS/glibc-2.1.3-10cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.0/i386/glibc-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.0/i386/glibc-devel-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.0/i386/glibc-profile-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.0/i386/nscd-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.1/SRPMS/glibc-2.1.3-10cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.1/i386/glibc-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.1/i386/glibc-devel-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.1/i386/glibc-profile-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/5.1/i386/nscd-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/SRPMS/glibc-2.1.3-10cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/glibc-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/glibc-devel-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/glibc-profile-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/ecommerce/i386/nscd-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/SRPMS/glibc-2.1.3-10cl.src.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/glibc-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/glibc-devel-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/glibc-profile-2.1.3-10cl.i386.rpm\n\n - ftp://atualizacoes.conectiva.com.br/ferramentas/graficas/i386/nscd-2.1.3-10cl.i386.rpm\n- Caldera :\n - OpenLinux Desktop 2.3 :\n - ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/RPMS/\n\n - ftp://ftp.calderasystems.com/pub/updates/OpenLinux/2.3/current/SRPMS\n\n - RPMS/glibc-2.1.1-3.i386.rpm\n - RPMS/glibc-devel-2.1.1-3.i386.rpm\n - RPMS/glibc-devel-static-2.1.1-3.i386.rpm\n - RPMS/glibc-localedata-2.1.1-3.i386.rpm\n - SRPMS/glibc-2.1.1-3.src.rpm\n - OpenLinux eServer 2.3 et OpenLinux eBuilder pour ECential 3.0 :\n - ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/RPMS/\n\n - ftp://ftp.calderasystems.com/pub/updates/eServer/2.3/current/SRPMS\n\n - RPMS/glibc-2.1.3-4S.i386.rpm\n - RPMS/glibc-devel-2.1.3-4S.i386.rpm\n - RPMS/glibc-devel-static-2.1.3-4S.i386.rpm\n - RPMS/glibc-localedata-2.1.3-4S.i386.rpm\n - SRPMS/glibc-2.1.3-4S.src.rpm\n - OpenLinux eDesktop 2.4 :\n - ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/RPMS/\n\n - ftp://ftp.calderasystems.com/pub/updates/eDesktop/2.4/current/SRPMS\n\n - RPMS/glibc-2.1.2-7.i386.rpm\n - RPMS/glibc-devel-2.1.2-7.i386.rpm\n - RPMS/glibc-devel-static-2.1.2-7.i386.rpm\n - RPMS/glibc-localedata-2.1.2-7.i386.rpm\n - SRPMS/glibc-2.1.2-7.src.rpm\n- Slackware:\n - ftp://ftp.slackware.com/pub/slackware/slackware-current/slakware/a1/glibcso.tgz\n\n - ftp://ftp.slackware.com/pub/slackware/slackware-current/slakware/d1/glibc.tgz\n\n - ftp://ftp.slackware.com/pub/slackware/slackware-current/slakware/des1/descrypt.tgz\n- SuSE Linux:\n - ftp://ftp.suse.com/pub/suse/i386/update/7.0/a1/shlibs-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/7.0/d1/libc-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/7.0/d2/libd-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/7.0/zq1/libc-2.1.3-154.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.4/a1/shlibs-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.4/d1/libc-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.4/d2/libd-2.1.3-154.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.4/zq1/libc-2.1.3-154.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.3/a1/shlibs-2.1.2-47.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.3/d1/libc-2.1.2-47.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.3/d2/libd-2.1.2-47.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.3/zq1/libc-2.1.2-47.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.2/a1/shlibs-2.1.1-29.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.2/d1/libc-2.1.1-29.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.2/d2/libd-2.1.1-29.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.2/zq1/libc-2.1.1-29.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.1/a1/shlibs-2000.9.5-0.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.1/d1/libc-2000.9.5-0.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.1/d2/libd-2000.9.5-0.i386.rpm\n\n - ftp://ftp.suse.com/pub/suse/i386/update/6.1/zq1/libc-2000.9.5-0.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/sparc/update/7.0/a1/shlibs-2.1.3-154.sparc.rpm\n\n - ftp://ftp.suse.com/pub/suse/sparc/update/7.0/d1/libc-2.1.3-154.sparc.rpm\n\n - ftp://ftp.suse.com/pub/suse/sparc/update/7.0/d2/libd-2.1.3-154.sparc.rpm\n\n - ftp://ftp.suse.com/pub/suse/sparc/update/7.0/zq1/libc-2.1.3-154.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.4/a1/shlibs-2.1.3-154.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.4/d1/libc-2.1.3-154.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.4/d2/libd-2.1.3-154.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.4/zq1/libc-2.1.3-154.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.3/a1/shlibs-2.1.2-47.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.3/d1/libc-2.1.2-47.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.3/d2/libd-2.1.2-47.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.3/zq1/libc-2.1.2-47.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.1/a1/shlibs-2000.9.5-0.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.1/d1/libc-2000.9.5-0.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.1/d2/libd-2000.9.5-0.alpha.rpm\n\n - ftp://ftp.suse.com/pub/suse/axp/update/6.1/zq1/libc-2000.9.5-0.src.rpm\n\n - ftp://ftp.suse.com/pub/suse/ppc/update/6.4/a1/shlibs-2.1.3-154.ppc.rpm\n\n - ftp://ftp.suse.com/pub/suse/ppc/update/6.4/d1/libc-2.1.3-154.ppc.rpm\n\n - ftp://ftp.suse.com/pub/suse/ppc/update/6.4/d2/libd-2.1.3-154.ppc.rpm\n\n - ftp://ftp.suse.com/pub/suse/ppc/update/6.4/zq1/libc-2.1.3-154.src.rpm\n- Linux-Mandrake 7.0 et 7.1:\n - 7.0/RPMS/glibc-2.1.3-16mdk.i586.rpm\n - 7.0/RPMS/glibc-devel-2.1.3-16mdk.i586.rpm\n - 7.0/RPMS/glibc-profile-2.1.3-16mdk.i586.rpm\n - 7.0/SRPMS/glibc-2.1.3-16mdk.src.rpm\n - 7.1/RPMS/glibc-2.1.3-17mdk.i586.rpm\n - 7.1/RPMS/glibc-devel-2.1.3-17mdk.i586.rpm\n - 7.1/RPMS/glibc-profile-2.1.3-17mdk.i586.rpm\n - 7.1/SRPMS/glibc-2.1.3-17mdk.src.rpm\n- Red Hat:\n - ftp://updates.redhat.com/5.2/sparc/glibc-2.0.7-29.4.sparc.rpm\n\n - ftp://updates.redhat.com/5.2/sparc/glibc-debug-2.0.7-29.4.sparc.rpm\n\n - ftp://updates.redhat.com/5.2/sparc/glibc-devel-2.0.7-29.4.sparc.rpm\n\n - ftp://updates.redhat.com/5.2/sparc/glibc-profile-2.0.7-29.4.sparc.rpm\n\n - ftp://updates.redhat.com/5.2/alpha/glibc-2.0.7-29.4.alpha.rpm\n\n - ftp://updates.redhat.com/5.2/alpha/glibc-debug-2.0.7-29.4.alpha.rpm\n\n - ftp://updates.redhat.com/5.2/alpha/glibc-devel-2.0.7-29.4.alpha.rpm\n\n - ftp://updates.redhat.com/5.2/alpha/glibc-profile-2.0.7-29.4.alpha.rpm\n\n - ftp://updates.redhat.com/5.2/i386/glibc-2.0.7-29.4.i386.rpm\n\n - ftp://updates.redhat.com/5.2/i386/glibc-debug-2.0.7-29.4.i386.rpm\n\n - ftp://updates.redhat.com/5.2/i386/glibc-devel-2.0.7-29.4.i386.rpm\n\n - ftp://updates.redhat.com/5.2/i386/glibc-profile-2.0.7-29.4.i386.rpm\n\n - ftp://updates.redhat.com/5.2/SRPMS/glibc-2.0.7-29.4.src.rpm\n\n - ftp://updates.redhat.com/6.2/sparc/glibc-2.1.3-21.sparc.rpm\n\n - ftp://updates.redhat.com/6.2/sparc/glibc-devel-2.1.3-21.sparc.rpm\n\n - ftp://updates.redhat.com/6.2/sparc/glibc-profile-2.1.3-21.sparc.rpm\n\n - ftp://updates.redhat.com/6.2/sparc/nscd-2.1.3-21.sparc.rpm\n\n - ftp://updates.redhat.com/6.2/i386/glibc-2.1.3-21.i386.rpm\n\n - ftp://updates.redhat.com/6.2/i386/glibc-devel-2.1.3-21.i386.rpm\n\n - ftp://updates.redhat.com/6.2/i386/glibc-profile-2.1.3-21.i386.rpm\n\n - ftp://updates.redhat.com/6.2/i386/nscd-2.1.3-21.i386.rpm\n\n - ftp://updates.redhat.com/6.2/alpha/glibc-2.1.3-21.alpha.rpm\n\n - ftp://updates.redhat.com/6.2/alpha/glibc-devel-2.1.3-21.alpha.rpm\n\n - ftp://updates.redhat.com/6.2/alpha/glibc-profile-2.1.3-21.alpha.rpm\n\n - ftp://updates.redhat.com/6.2/alpha/nscd-2.1.3-21.alpha.rpm\n\n - ftp://updates.redhat.com/6.2/sparcv9/glibc-2.1.3-21.sparcv9.rpm\n\n - ftp://updates.redhat.com/6.2/SRPMS/glibc-2.1.3-21.src.rpm\n- TurboLinux:\n - ftp://ftp.turbolinux.com/pub/updates/6.0/glibc-2.1.2-17S.i386.rpm\n\n - ftp://ftp.turbolinux.com/pub/updates/6.0/glibc-2.1.2-15S.i386.rpm\n\n - ftp://ftp.turbolinux.com/pub/updates/6.0/SRPMS/glibc-2.1.2-17S.src.rpm\n\n - ftp://ftp.turbolinux.com/pub/updates/6.0/SRPMS/glibc-2.1.2-15S.src.rpm\n\nSi votre version d'unix n'est pas cit\u00e9e, veuillez consulter le CERTA.\n","cves":[],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 Debian :","url":"http://security.debian.org/security/2000/20000902"},{"title":"Bulletin de s\u00e9curit\u00e9 RedHat :","url":"http://www.redhat.com/support/errata/RHSA-2000-057-04.html"}],"reference":"CERTA-2000-ALE-014","revisions":[{"description":"version initiale.","revision_date":"2000-09-14T00:00:00.000000"}],"risks":[{"description":"Acc\u00e8s root en local gr\u00e2ce \u00e0 un d\u00e9bordement de pile"}],"summary":"La biblioth\u00e8que glibc permet \u00e0 un utilisateur local d'ex\u00e9cuter du code\narbitraire avec les privil\u00e8ges de root.\n","title":"Vuln\u00e9rabilit\u00e9 dans la biblioth\u00e8que glibc sous Unix","vendor_advisories":[{"published_at":null,"title":"Avis de s\u00e9curit\u00e9 Debian et RedHat","url":null},{"published_at":null,"title":"Avis Security Bugware","url":null}]}