CVE-2005-4790

Priority
Description
Multiple untrusted search path vulnerabilities in SUSE Linux 9.3 and 10.0,
and possibly other distributions, cause the working directory to be added
to LD_LIBRARY_PATH, which might allow local users to execute arbitrary code
via (1) beagle, (2) tomboy, or (3) blam. NOTE: in August 2007, the tomboy
vector was reported for other distributions.
Notes
 jdstrand> bug has debdiffs
 jdstrand> upstream 0.9.1 does not contain the vulnerable code
Assigned-to
jdstrand
Package
Upstream:needed
More Information

Updated: 2019-03-19 11:37:56 UTC (commit 15472795df7e9de45b82f2d36b8b419b939f97b2)