Описание
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 2.18.15-5 |
| cosmic | not-affected | 2.18.15-5 |
| dapper | DNE | |
| devel | not-affected | 2.18.15-5 |
| esm-apps/bionic | not-affected | 2.18.15-5 |
| esm-apps/xenial | not-affected | 2.18.15-5 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was not-affected [2.18.15-5]] |
| hardy | DNE | |
| jaunty | DNE |
Показывать по
Ссылки на источники
6.9 Medium
CVSS2
Связанные уязвимости
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
magics-config in Magics++ 2.10.0 places a zero-length directory name i ...
magics-config in Magics++ 2.10.0 places a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory.
6.9 Medium
CVSS2