Overview

File _patchinfo of Package patchinfo.38829

<patchinfo incident="38829">
  <issue tracker="cve" id="2025-4802"/>
  <issue tracker="bnc" id="1234128">SLES 15 SP4: potential libpthread bug</issue>
  <issue tracker="bnc" id="1243317">VUL-0: CVE-2025-4802: glibc: The GNU C Library security advisories update for 2025-05-16</issue>
  <packager>Andreas_Schwab</packager>
  <rating>important</rating>
  <category>security</category>
  <summary>Security update for glibc</summary>
  <description>This update for glibc fixes the following issues:

Security issues fixed:

- CVE-2025-4802: possible execution of attacker controlled code when statically linked setuid binaries using dlopen
  search for libraries to load in LD_LIBRARY_PATH (bsc#1243317).

Other issues fixed:

- Multi-threaded application hang due to deadlock when `pthread_cond_signal` fails to wake up `pthread_cond_wait`
  as a consequence of a bug related to stealing of signals (bsc#1234128).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places