tags 598289 + patch thanks Fixed RedHat bug 638384 - (CVE-2010-3357) CVE-2010-3357 gnome-subtitles: insecure library loading vulnerability
http://git.gnome.org/browse/gnome-subtitles/commit/?id=44370dc2a87f7fa0d6c9730979514bd407a37c65 -- Regards, dai GPG Fingerprint = 0B29 D88E 42E6 B765 B8D8 EA50 7839 619D D439 668E
From 44370dc2a87f7fa0d6c9730979514bd407a37c65 Mon Sep 17 00:00:00 2001 From: Pedro Castro <m...@pedrocastro.org> Date: Fri, 01 Oct 2010 23:32:13 +0000 Subject: Fixed RedHat bug #638384 - (CVE-2010-3357) CVE-2010-3357 gnome-subtitles: insecure library loading vulnerability --- diff --git a/src/GnomeSubtitles/Execution/gnome-subtitles.in b/src/GnomeSubtitles/Execution/gnome-subtitles.in index 698fe4a..6689357 100644 --- a/src/GnomeSubtitles/Execution/gnome-subtitles.in +++ b/src/GnomeSubtitles/Execution/gnome-subtitles.in @@ -6,7 +6,7 @@ libd...@libdir@ sublibd...@sublib_dll_dir@ -export LD_LIBRARY_PATH="$libdir/gnome-subtitles:$LD_LIBRARY_PATH" +export LD_LIBRARY_PATH=$libdir/gnome-subtitles${LD_LIBRARY_PATH:+:$LD_LIBRARY_PATH} export MONO_PATH=$sublibdir:$MONO_PATH exec -a gnome-subtitles @MONO@ $libdir/gnome-subtitles/gnome-subtitles.exe "$@" -- cgit v0.8.3.1
signature.asc
Description: Digital signature