CVE-2010-0830 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-0830 Interim 1 18 2024-07-04T02:47:06Z current 2021-05-30T12:50:40Z 2024-07-04T02:47:06Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-0830 Integer signedness error in the elf_get_dynamic_info function in elf/dynamic-link.h in ld.so in the GNU C Library (aka glibc or libc6) 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value for a certain d_tag structure member in the ELF header. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4GV6CUGE3JGTZZUYVACC3MINIWE4G3TS/#4GV6CUGE3JGTZZUYVACC3MINIWE4G3TS E-Mail link for SUSE-SA:2010:052 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Desktop 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Server 11 SUSE Linux Enterprise Software Development Kit 11 SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Software Development Kit 11 glibc glibc-2.11.1-0.18.2 glibc-32bit-2.11.1-0.18.2 glibc-devel glibc-devel-2.11.1-0.18.2 glibc-devel-32bit-2.11.1-0.18.2 glibc-html glibc-html-2.11.1-0.18.2 glibc-i18ndata glibc-i18ndata-2.11.1-0.18.2 glibc-info glibc-info-2.11.1-0.18.2 glibc-locale glibc-locale-2.11.1-0.18.2 glibc-locale-32bit-2.11.1-0.18.2 glibc-profile glibc-profile-2.11.1-0.18.2 glibc-profile-32bit-2.11.1-0.18.2 nscd nscd-2.11.1-0.18.2 glibc-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-32bit-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-devel-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-devel-32bit-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-html-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-i18ndata-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-info-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-locale-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-locale-32bit-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-profile-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc-profile-32bit-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA nscd-2.11.1-0.18.2 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA glibc as a component of SUSE Linux Enterprise Desktop 11 glibc as a component of SUSE Linux Enterprise Server 11 glibc-devel as a component of SUSE Linux Enterprise Server 11 glibc-html as a component of SUSE Linux Enterprise Server 11 glibc-i18ndata as a component of SUSE Linux Enterprise Server 11 glibc-info as a component of SUSE Linux Enterprise Server 11 glibc-locale as a component of SUSE Linux Enterprise Server 11 glibc-profile as a component of SUSE Linux Enterprise Server 11 nscd as a component of SUSE Linux Enterprise Server 11 glibc as a component of SUSE Linux Enterprise Software Development Kit 11 Integer signedness error in the elf_get_dynamic_info function in elf/dynamic-link.h in ld.so in the GNU C Library (aka glibc or libc6) 2.0.1 through 2.11.1, when the --verify option is used, allows user-assisted remote attackers to execute arbitrary code via a crafted ELF program with a negative value for a certain d_tag structure member in the ELF header. CVE-2010-0830 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-32bit-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-devel-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-devel-32bit-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-html-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-i18ndata-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-info-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-locale-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-locale-32bit-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-profile-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:glibc-profile-32bit-2.11.1-0.18.2 SUSE Linux Enterprise Server 11 SP1-TERADATA:nscd-2.11.1-0.18.2 SUSE Linux Enterprise Desktop 11:glibc SUSE Linux Enterprise Server 11:glibc SUSE Linux Enterprise Server 11:glibc-devel SUSE Linux Enterprise Server 11:glibc-html SUSE Linux Enterprise Server 11:glibc-i18ndata SUSE Linux Enterprise Server 11:glibc-info SUSE Linux Enterprise Server 11:glibc-locale SUSE Linux Enterprise Server 11:glibc-profile SUSE Linux Enterprise Server 11:nscd SUSE Linux Enterprise Software Development Kit 11:glibc moderate 5.1 AV:N/AC:H/Au:N/C:P/I:P/A:P