The glibc packages contain the standard C libraries used by multipleprograms on the system. These packages contain the standard C and thestandard math libraries. Without these two libraries, a Linux system cannotfunction properly.It was discovered that the glibc dynamic linker/loader did not performsufficient safety checks when loading dynamic shared objects (DSOs) toprovide callbacks for its auditing API during the execution ofprivileged programs. A local attacker could use this flaw to escalatetheir privileges via a carefully-chosen system DSO library containingunsafe constructors. (CVE-2010-3856)Red Hat would like to thank Ben Hawkes and Tavis Ormandy for reporting thisissue.All users should upgrade to these updated packages, which contain abackported patch to correct this issue.