Unrated severityNVD Advisory· Published Mar 26, 2001· Updated Jun 16, 2026
CVE-2001-0170
CVE-2001-0170
Description
glibc 2.1.9x and earlier does not properly clear the RESOLV_HOST_CONF, HOSTALIASES, or RES_OPTIONS environmental variables when executing setuid/setgid programs, which could allow local users to read arbitrary files.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
13cpe:2.3:o:conectiva:linux:4.0:*:*:*:*:*:*:*+ 8 more
- cpe:2.3:o:conectiva:linux:4.0:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:4.0es:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:4.1:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:4.2:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:5.0:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:6.0:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:ecommerce:*:*:*:*:*:*:*
- cpe:2.3:o:conectiva:linux:graficas:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
5- archives.neohapsis.com/archives/bugtraq/2001-01/0186.htmlnvdPatchVendor Advisory
- www.redhat.com/support/errata/RHSA-2001-001.htmlnvdPatchVendor Advisory
- www.securityfocus.com/bid/2181nvdPatchVendor Advisory
- archives.neohapsis.com/archives/bugtraq/2001-01/0131.htmlnvdVendor Advisory
- exchange.xforce.ibmcloud.com/vulnerabilities/5907nvd
News mentions
0No linked articles in our index yet.