Cobbled together from https://www.reddit.com/r/PHP/comments/1c9lslg/security_vulnerability_in_php_caused_by_glibc/
https://security-tracker.debian.org/tracker/CVE-2024-2961
https://rockylinux.org/news/glibc-vulnerability-april-2024/
For Debian-based systems this might be helpful until there is an update release
Check if your system is vulnerable:
From terminal/shell run:
iconv -l | grep -E 'CN-?EXT'
If you get:
ISO-2022-CN-EXT//
ISO2022CNEXT//
You might be vulnerable.
On Debian , check this file:
/usr/lib/x86_64-linux-gnu/gconv/gconv-modules
At around row 1286 you will see the grouping you need to remove
Remove those 4 rows. Save.
Then run:
sudo iconvconfig
And try the test again – should be null returned
iconv -l | grep -E 'CN-?EXT'
YMMV but wanted to put this in a single spot. Please comment/correct as this is an evolving thing.
Please correct me if update info comes out. Just trying to help others here.