package to fixThe underlying bug in GNU libc (glibc) can be used to gain root access given a local account, and an exploit for the vulnerability has been publicly released. We understand that major Linux distributions, including Red Hat Enterprise Linux and CentOS, are currently preparing updated glibc packages.
We wanted to reach out and let you know that Ksplice has prepared patched glibc packages for the Red Hat Enterprise Linux 5 and CentOS 5 distributions available immediately, as a courtesy to administrators concerned about the vulnerability. Customers who want to patch this vulnerability now, in advance of a release by their Linux distribution, may do so from our updated packages. We understand major vendors' updates will be based on the same patch. Ksplice will support these patched glibc packages until vendor-supplied packages become available.
https://www.ksplice.com/cve-2010-3847
there is exploit over internet
