Summary: | <dev-util/mono-debugger-2.8.1-r1: Insecure Use of LD_LIBRARY_PATH (CVE-2010-3369) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Tim Sammut (RETIRED) <underling> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | minor | CC: | dotnet |
Priority: | High | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.mono-project.com/Vulnerabilities | ||
Whiteboard: | B3 [glsa] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 352808, 359651 | ||
Bug Blocks: |
Description
Tim Sammut (RETIRED)
2010-11-22 04:31:20 UTC
This patch could probably be backported to mono-debugger-2.6: http://patch-tracker.debian.org/patch/series/view/mono-debugger/2.6.3-2.2/cve-2010-3369--bug598299 Fixed packages have been stabilized via 352808 and, for ppc only, 359651. GLSA Vote: yes. Vote: YES. New GLSA request filed. This issue was resolved and addressed in GLSA 201206-13 at http://security.gentoo.org/glsa/glsa-201206-13.xml by GLSA coordinator Tobias Heinlein (keytoaster). |