Candidate: CVE-2010-3359
PublicDate: 2019-11-12 19:15:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3359
Description:
 If LD_LIBRARY_PATH is undefined in gargoyle-free before 2009-08-25, the
 variable will point to the current directory. This can allow a local user
 to trick another user into running gargoyle in a directory with a cracked
 libgarglk.so and gain access to the user's account.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS:
 nvd: CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L [4.8 MEDIUM]

Patches_gargoyle-free:
upstream_gargoyle-free: released (2009-08-25-2)
hardy_gargoyle-free: DNE
lucid_gargoyle-free: ignored (reached end-of-life)
maverick_gargoyle-free: not-affected (2009-08-25-2)
natty_gargoyle-free: not-affected
oneiric_gargoyle-free: not-affected
precise_gargoyle-free: not-affected
quantal_gargoyle-free: not-affected
raring_gargoyle-free: not-affected
saucy_gargoyle-free: not-affected
devel_gargoyle-free: not-affected