Описание
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 7.22.4-1 |
| hardy | ignored | end of life |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | 7.20.4-1 |
| maverick | ignored | end of life |
| natty | not-affected | 7.22.4-1 |
| oneiric | not-affected | 7.22.4-1 |
| precise | not-affected | 7.22.4-1 |
Показывать по
Ссылки на источники
6.9 Medium
CVSS2
Связанные уязвимости
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory nam ...
The vips-7.22 script in VIPS 7.22.2 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
6.9 Medium
CVSS2