id	summary	reporter	owner	description	type	status	priority	milestone	component	version	severity	resolution	keywords	cc
5426	glibc-2.39	Xi Ruoyao	Xi Ruoyao	"New minor version.

Containing CVE-2023-6246, CVE-2023-6779, and CVE-2023-6780 fixes.  CVE-2023-6246 is rated HIGH (7.8 by NVD, 8.4 by Red Hat) as a practically exploitable local privilege escalation.

The fixes are included in glibc-2.38-upstream_fixes-4.patch, but a SA for LFS 11.2 - 12.0 (glibc 2.36 - 2.38) has not been issued yet.  Currently the editors seem having a consensus that upgrading Glibc should be safe with some caution, and to ease the security fixes on Glibc we can just tell how to upgrade Glibc safely instead of preparing patches for multiple Glibc versions."	enhancement	closed	high	12.1	Website	git	normal	fixed