Candidate: CVE-2014-2094
PublicDate: 2014-02-26 14:55:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2094
 https://bugzilla.redhat.com/show_bug.cgi?id=1069396
 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=739958
 http://openwall.com/lists/oss-security/2014/02/25/4
 http://openwall.com/lists/oss-security/2014/02/25/2
Description:
 Untrusted search path vulnerability in Catfish through 0.4.0.3, when a
 Fedora package such as 0.4.0.2-2 is not used, allows local users to gain
 privileges via a Trojan horse catfish.pyc in the current working directory.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
CVSS: 

Patches_catfish:
upstream_catfish: released (1.0.1-1)
lucid_catfish: ignored (reached end-of-life)
precise_catfish: ignored (reached end-of-life)
precise/esm_catfish: DNE (precise was needed)
quantal_catfish: ignored (reached end-of-life)
saucy_catfish: ignored (reached end-of-life)
trusty_catfish: not-affected
trusty/esm_catfish: DNE (trusty was not-affected)
utopic_catfish: ignored (reached end-of-life)
vivid_catfish: ignored (reached end-of-life)
vivid/stable-phone-overlay_catfish: DNE
vivid/ubuntu-core_catfish: DNE
wily_catfish: ignored (reached end-of-life)
xenial_catfish: not-affected
yakkety_catfish: not-affected
zesty_catfish: not-affected
devel_catfish: not-affected