Unrated severityNVD Advisory· Published Jul 3, 2007· Updated Jun 16, 2026
CVE-2007-3508
CVE-2007-3508
Description
Integer overflow in the process_envvars function in elf/rtld.c in glibc before 2.5-rc4 might allow local users to execute arbitrary code via a large LD_HWCAP_MASK environment variable value. NOTE: the glibc maintainers state that they do not believe that this issue is exploitable for code execution
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
9- secunia.com/advisories/25864nvdVendor Advisory
- www.vupen.com/english/advisories/2007/2418nvdVendor Advisory
- bugs.gentoo.org/show_bug.cginvd
- osvdb.org/37901nvd
- security.gentoo.org/glsa/glsa-200707-04.xmlnvd
- sources.gentoo.org/viewcvs.py/gentoo/src/patchsets/glibc/2.5/1600_all_glibc-hwcap-mask-secure.patchnvd
- www.securityfocus.com/bid/24758nvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/35240nvd
News mentions
0No linked articles in our index yet.