VIR Vulnerability Intelligence Relay

CVE-2023-4911

high KEV
Published 2023-10-05 · Modified 2023-10-06
CVSS v3
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS v2
VIR risk
9.3

Description

Important: glibc security update

CISA KEV

Vendor
GNU
Product
GNU C Library
Due date
2023-12-12

Predictions

Exploit likelihood
99%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/9/ALSA-2023-5453.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://errata.almalinux.org/8/ALSA-2023-5455.html

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2238352

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2237798

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2237782

vendor Authored 2026-05-27

Vendor advisory: alma — https://bugzilla.redhat.com/2234712

vendor Authored 2026-05-27

Vendor advisory: alma — https://access.redhat.com/errata/RHSA-2023:5455

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — This vulnerability affects a common open-source component, third-party library, or a protocol used by different products. Please check with specific vendors for information on patching status. For more information, please see: https://sourceware.org/git/?p=glibc.git;a=commitdiff;h=1056e5b4c3f2d90ed2b4a55f96add28da2f4c8fa, https://access.redhat.com/security/cve/cve-2023-4911, https://www.debian.org/security/2023/dsa-5514 ; https://nvd.nist.gov/vuln/detail/CVE-2023-4911

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2023-4911

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2023-4911.html

vendor Authored 2026-05-27

Vendor advisory: rocky — https://errata.rockylinux.org/RLSA-2023:5455

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — https://bugzilla.redhat.com/show_bug.cgi?id=2238352

vendor Authored 2026-05-27

Vendor advisory: redhat — https://access.redhat.com/errata/RHSA-2023:5453

Mitigation details

Source: Red Hat Errata — Red Hat Inc. · View original ↗ · Open-Errata-API

Description glibc: buffer overflow in ld.so leading to privilege escalation Red Hat statement This vulnerability was introduced in glibc version 2.34. RHEL-8 ships glibc 2.28, which is not originally affected by this vulnerability. However, the commit that introduced this vulnerability was backported to RHEL-8.5, making this version and onward vulnerable. RHEL-8.4 and older are not affected by…

Description

glibc: buffer overflow in ld.so leading to privilege escalation

Red Hat statement

This vulnerability was introduced in glibc version 2.34. RHEL-8 ships glibc 2.28, which is not originally affected by this vulnerability. However, the commit that introduced this vulnerability was backported to RHEL-8.5, making this version and onward vulnerable. RHEL-8.4 and older are not affected by this vulnerability.

CVSS v3: 7.8 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)

Errata / fixed releases

ProductPackageAdvisoryReleased
Red Hat Enterprise Linux 8glibc-0:2.28-225.el8_8.6RHSA-2023:54552023-10-05T00:00:00Z
Red Hat Enterprise Linux 8glibc-0:2.28-225.el8_8.6RHSA-2023:54552023-10-05T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Supportglibc-0:2.28-189.6.el8_6RHSA-2023:54762023-10-05T00:00:00Z
Red Hat Enterprise Linux 9glibc-0:2.34-60.el9_2.7RHSA-2023:54532023-10-05T00:00:00Z
Red Hat Enterprise Linux 9glibc-0:2.34-60.el9_2.7RHSA-2023:54532023-10-05T00:00:00Z
Red Hat Enterprise Linux 9.0 Extended Update Supportglibc-0:2.34-28.el9_0.4RHSA-2023:54542023-10-05T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8glibc-0:2.28-189.6.el8_6RHSA-2023:54762023-10-05T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8redhat-release-virtualization-host-0:4.5.3-10.el8evRHSA-2024:00332024-01-03T00:00:00Z
Red Hat Virtualization 4 for Red Hat Enterprise Linux 8redhat-virtualization-host-0:4.5.3-202312060823_8.6RHSA-2024:00332024-01-03T00:00:00Z

Package state

ProductPackageState
Red Hat Enterprise Linux 6glibcNot affected
Red Hat Enterprise Linux 7compat-glibcNot affected
Red Hat Enterprise Linux 7glibcNot affected

Apply commands

bash fix
Apply RHSA-2023:5455 for Red Hat Enterprise Linux 8
yum update -y glibc
# or:
dnf upgrade -y glibc

Affected

VendorProductVersion
redhatRed Hat Enterprise Linux 6Not affected
redhatRed Hat Enterprise Linux 7Not affected
redhatRed Hat Enterprise Linux 7Not affected

Exploits

OS impact
OSVersionStatusFixed in
redhat rhel9fixed
rockylinux rocky8fixed
suse slesaffected
debian debianbookwormfixed2.36-9+deb12u3
debian debianbullseyefixed2.31-13+deb11u7
debian debianforkyfixed2.37-12
debian debiansidfixed2.37-12
debian debiantrixiefixed2.37-12
ubuntu ubuntu22.04affected
ubuntu ubuntu23.04affected
debian debian11.0affected
debian debian12.0affected
fedora fedora37affected
fedora fedora38affected
fedora fedora39affected
redhat rhel8.0affected
redhat rhel9.0affected
redhat rhel8.6affected
redhat rhel9.2affected
redhat rhel9.4affected
redhat rhel9.6affected
redhat rhel9.0_aarch64affected

Application impact
VendorProductVersionsFixed
gnuglibc{"startIncluding":"2.34","endExcluding":"2.39"}2.39
redhatcodeready_linux_builder9.0
redhatcodeready_linux_builder_eus8.6
redhatcodeready_linux_builder_eus9.2
redhatcodeready_linux_builder_eus9.4
redhatcodeready_linux_builder_eus9.6
redhatcodeready_linux_builder_for_arm649.0_aarch64
redhatcodeready_linux_builder_for_arm64_eus8.6
redhatcodeready_linux_builder_for_arm64_eus9.2_aarch64
redhatcodeready_linux_builder_for_arm64_eus9.4_aarch64
redhatcodeready_linux_builder_for_arm64_eus9.6_aarch64
redhatcodeready_linux_builder_for_ibm_z_systems9.0_s390x
redhatcodeready_linux_builder_for_ibm_z_systems_eus8.6
redhatcodeready_linux_builder_for_ibm_z_systems_eus9.2_s390x
redhatcodeready_linux_builder_for_ibm_z_systems_eus9.4_s390x
redhatcodeready_linux_builder_for_ibm_z_systems_eus9.6_s390x
redhatcodeready_linux_builder_for_power_little_endian9.0_ppc64le
redhatcodeready_linux_builder_for_power_little_endian_eus8.6
redhatcodeready_linux_builder_for_power_little_endian_eus9.2_ppc64le
redhatcodeready_linux_builder_for_power_little_endian_eus9.4_ppc64le
redhatcodeready_linux_builder_for_power_little_endian_eus9.6_ppc64le
redhatvirtualization4.0
redhatvirtualization_host4.0
netappontap_select_deploy_administration_utility-

References

CWEs

CWE-122 CWE-787

Verify integrity in audit chain (admin only). AS-IS.