Candidate: CVE-2010-3364
PublicDate: 2010-10-20 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3364
Description:
 The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in
 the LD_LIBRARY_PATH, which allows local users to gain privileges via a
 Trojan horse shared library in the current working directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_vips:
upstream_vips: released (7.14.5-2)
dapper_vips: ignored (reached end-of-life)
hardy_vips: ignored (reached end-of-life)
jaunty_vips: ignored (reached end-of-life)
karmic_vips: ignored (reached end-of-life)
lucid_vips: not-affected (7.20.4-1)
maverick_vips: ignored (reached end-of-life)
natty_vips: not-affected (7.22.4-1)
oneiric_vips: not-affected (7.22.4-1)
precise_vips: not-affected (7.22.4-1)
devel_vips: not-affected (7.22.4-1)