Package: gtkodbcconfig0 Version: 2.2.11-10 Severity: grave Tags: security Hello Steve,
usr/lib/libgtkodbcconfig.so.0.0.0 set a rpath pointing to user writable location: % chrpath usr/lib/libgtkodbcconfig.so.0.0.0 usr/lib/libgtkodbcconfig.so.0.0.0: RPATH=/home/vorlon/unixodbc-2.2.11/gODBCConfig/../debian/tmp/usr/lib This allows a user whose homedir is /home/vorlon to get access to accounts of users using this library. Cheers, -- Bill. <[EMAIL PROTECTED]> Imagine a large red swirl here. -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
