Loading
A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBC_TUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBC_TUNABLES environment variables when launching binaries with SUID permission to execute code with elevated privileges.
Use CWE-122, Netapp vendor hub and Bootstrap Os product page to widen CVE-2023-4911 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2025-24813, CVE-2024-56337 and CVE-2024-50379 for nearby disclosures in the same product family.