Candidate: CVE-2010-3362
PublicDate: 2010-10-20 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3362
Description:
 lastfm 1.5.4 places a zero-length directory name in the LD_LIBRARY_PATH,
 which allows local users to gain privileges via a Trojan horse shared
 library in the current working directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_lastfm:
upstream_lastfm: released (1:1.5.4.26862+dfsg-5)
dapper_lastfm: DNE
hardy_lastfm: ignored (reached end-of-life)
jaunty_lastfm: ignored (reached end-of-life)
karmic_lastfm: ignored (reached end-of-life)
lucid_lastfm: ignored (reached end-of-life)
maverick_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
natty_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
oneiric_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
precise_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
quantal_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
raring_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
saucy_lastfm: not-affected (1:1.5.4.26862+dfsg-5)
devel_lastfm: not-affected (1:1.5.4.26862+dfsg-5)