Candidate: CVE-2010-3384
PublicDate: 2010-10-20 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3384
Description:
 The (1) torcs, (2) nfsperf, (3) accc, (4) texmapper, (5) trackgen, and (6)
 nfs2ac scripts in TORCS 1.3.1 place a zero-length directory name in the
 LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan
 horse shared library in the current working directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_torcs:
upstream_torcs: released (1.3.1-5)
dapper_torcs: ignored (reached end-of-life)
hardy_torcs: ignored (reached end-of-life)
jaunty_torcs: ignored (reached end-of-life)
karmic_torcs: ignored (reached end-of-life)
lucid_torcs: ignored (reached end-of-life)
maverick_torcs: ignored (reached end-of-life)
natty_torcs: not-affected (1.3.1-5)
oneiric_torcs: not-affected (1.3.1-5)
precise_torcs: not-affected (1.3.1-5)
quantal_torcs: not-affected (1.3.1-5)
raring_torcs: not-affected (1.3.1-5)
saucy_torcs: not-affected (1.3.1-5)
devel_torcs: not-affected (1.3.1-5)