Candidate: CVE-2010-3385
PublicDate: 2010-10-20 18:00:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3385
Description:
 TuxGuitar 1.2 places a zero-length directory name in the LD_LIBRARY_PATH,
 which allows local users to gain privileges via a Trojan horse shared
 library in the current working directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
CVSS: 

Patches_tuxguitar:
upstream_tuxguitar: released (1.2-7)
dapper_tuxguitar: DNE
hardy_tuxguitar: ignored (reached end-of-life)
jaunty_tuxguitar: ignored (reached end-of-life)
karmic_tuxguitar: ignored (reached end-of-life)
lucid_tuxguitar: released (1.1-1ubuntu4.1)
maverick_tuxguitar: released (1.2-6ubuntu1.1)
natty_tuxguitar: not-affected (1.2-7ubuntu1)
oneiric_tuxguitar: not-affected (1.2-7ubuntu1)
devel_tuxguitar: not-affected (1.2-7ubuntu1)