tags 598289 + patch thanks Fixed RedHat bug 638384 - (CVE-2010-3357) CVE-2010-3357 gnome-subtitles: insecure library loading vulnerability
http://git.gnome.org/browse/gnome-subtitles/commit/?id=44370dc2a87f7fa0d6c9730979514bd407a37c65 -- Regards, dai GPG Fingerprint = 0B29 D88E 42E6 B765 B8D8 EA50 7839 619D D439 668E
From 44370dc2a87f7fa0d6c9730979514bd407a37c65 Mon Sep 17 00:00:00 2001
From: Pedro Castro <m...@pedrocastro.org>
Date: Fri, 01 Oct 2010 23:32:13 +0000
Subject: Fixed RedHat bug #638384 - (CVE-2010-3357) CVE-2010-3357 gnome-subtitles: insecure library loading vulnerability
---
diff --git a/src/GnomeSubtitles/Execution/gnome-subtitles.in b/src/GnomeSubtitles/Execution/gnome-subtitles.in
index 698fe4a..6689357 100644
--- a/src/GnomeSubtitles/Execution/gnome-subtitles.in
+++ b/src/GnomeSubtitles/Execution/gnome-subtitles.in
@@ -6,7 +6,7 @@ libd...@libdir@
sublibd...@sublib_dll_dir@
-export LD_LIBRARY_PATH="$libdir/gnome-subtitles:$LD_LIBRARY_PATH"
+export LD_LIBRARY_PATH=$libdir/gnome-subtitles${LD_LIBRARY_PATH:+:$LD_LIBRARY_PATH}
export MONO_PATH=$sublibdir:$MONO_PATH
exec -a gnome-subtitles @MONO@ $libdir/gnome-subtitles/gnome-subtitles.exe "$@"
--
cgit v0.8.3.1
signature.asc
Description: Digital signature
