Gnu · Glibc · CVE-2014-4043
**Name of the Vulnerable Software and Affected Versions**
glibc versions prior to 2.20
**Description**
The issue is related to the posix spawn file actions addopen function in glibc, which does not properly copy its path argument as per the POSIX specification. This can be exploited by context-dependent attackers to trigger use-after-free issues.
**Recommendations**
For versions prior to 2.20, update to version 2.20 or later to resolve the issue.