[Bug 897525] [NEW] Security Vulnerability Ember 0.5.7
Launchpad Bug Tracker
897525 at bugs.launchpad.net
Wed Nov 30 04:12:38 UTC 2011
*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Ubuntu Foundation's Bug Bot (crichton):
Ember 0.5.7 places a zero-length directory name in the LD_LIBRARY_PATH,
which allows local users to gain privileges via a Trojan horse shared
library in the current working directory.
** Affects: ember (Ubuntu)
Importance: Low
Assignee: Justin R. Andrusk (jandrusk)
Status: Confirmed
** Tags: patch
--
Security Vulnerability Ember 0.5.7
https://bugs.launchpad.net/bugs/897525
You received this bug notification because you are a member of Ubuntu Sponsors Team, which is subscribed to the bug report.
More information about the Ubuntu-sponsors
mailing list