Memory Leak Vulnerability in glibc 2.1.1 via LD_HWCAP_MASK Environment Variable

Memory Leak Vulnerability in glibc 2.1.1 via LD_HWCAP_MASK Environment Variable

CVE-2017-1000408 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

A memory leak in glibc 2.1.1 (released on May 24, 1999) can be reached and amplified through the LD_HWCAP_MASK environment variable. Please note that many versions of glibc are not vulnerable to this issue if patched for CVE-2017-1000366.

Learn more about our Web Application Penetration Testing UK.