New Glibc Flaw Grants Attackers Root Access on Major Linux Distros

Malicious local attackers can obtain full root access on Linux machines by taking advantage of a newly disclosed security flaw in the GNU C library (aka glibc).
Tracked as CVE-2023-6246, the heap-based buffer overflow vulnerability is rooted in glibc's __vsyslog_internal() function, which is used by syslog() and vsyslog() for system logging purposes. It's said to have been accidentally

access attackers buffer buffer overflow buffer overflow vulnerability can cve cve-2023-6246 flaw function glibc gnu grants library linux linux distros local machines major malicious overflow root root access security security flaw syslog vulnerability