Unrated severityNVD Advisory· Published Oct 14, 2010· Updated Apr 29, 2026
CVE-2010-3192
CVE-2010-3192
Description
Certain run-time memory protection mechanisms in the GNU C Library (aka glibc or libc6) print argv[0] and backtrace information, which might allow context-dependent attackers to obtain sensitive information from process memory by executing an incorrect program, as demonstrated by a setuid program that contains a stack-based buffer overflow error, related to the __fortify_fail function in debug/fortify_fail.c, and the __stack_chk_fail (aka stack protection) and __chk_fail (aka FORTIFY_SOURCE) implementations.
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- seclists.org/fulldisclosure/2010/Apr/399nvdMailing ListThird Party Advisory
- www.openwall.com/lists/oss-security/2010/08/25/8nvdMailing List
- www.openwall.com/lists/oss-security/2010/08/31/6nvdMailing List
- www.openwall.com/lists/oss-security/2010/08/31/7nvdMailing List
- www.openwall.com/lists/oss-security/2010/09/02/2nvdMailing List
- www.openwall.com/lists/oss-security/2010/09/02/3nvdMailing List
- www.openwall.com/lists/oss-security/2010/09/02/4nvdMailing List
- www.openwall.com/lists/oss-security/2010/09/02/5nvdMailing List
News mentions
0No linked articles in our index yet.