Active Exploitation of High Severity Vulnerability in GNU C Library

Published on 08 Nov 2023

Security researchers have disclosed a high severity vulnerability, known as Looney Tunables (CVE-2023-4911), in GNU C library which is commonly used in Linux kernel-based systems. This vulnerability is reportedly being actively exploited.

Successful exploitation of the buffer overflow vulnerability could allow a local attacker to execute code with root privileges in the compromised system.

The vulnerability affects products that use version 2.34 of the GNU C Library.

Users and administrators of affected products are advised to update to the latest product versions immediately.

More information is available here: