Strategic IT Consulting and Implementation Services

GLIBC Vuln Fix For Debian For Now

Cobbled together from https://www.reddit.com/r/PHP/comments/1c9lslg/security_vulnerability_in_php_caused_by_glibc/
https://security-tracker.debian.org/tracker/CVE-2024-2961
https://rockylinux.org/news/glibc-vulnerability-april-2024/

For Debian-based systems this might be helpful until there is an update release

Check if your system is vulnerable:

From terminal/shell run:

iconv -l | grep -E 'CN-?EXT'

If you get:

ISO-2022-CN-EXT//
ISO2022CNEXT//

You might be vulnerable.

On Debian , check this file:

/usr/lib/x86_64-linux-gnu/gconv/gconv-modules

At around row 1286 you will see the grouping you need to remove

Remove those 4 rows. Save.

Then run:

sudo iconvconfig

And try the test again – should be null returned

iconv -l | grep -E 'CN-?EXT'

YMMV but wanted to put this in a single spot. Please comment/correct as this is an evolving thing.

About the author

Jonathan Mergy

1 comment

Strategic IT Consulting and Implementation Services