On Wed, 2010-09-29 at 15:34 +0200, Alessio Treglia wrote:
> Please unblock package bristol 0.60.5-2, which fixes the 'grave' bug
> #598285 ("CVE-2010-3351: insecure library loading").
and removes potentially useful functionality in the process :-/
(although forcing /usr/local/lib and usr/lib (sic) ahead of
LD_LIBRARY_PATH is a little odd anyway)
+ export SLAB_HOME=$BRISTOL
+ export BRIGHTON=$BRISTOL
+
+-export
LD_LIBRARY_PATH=/usr/local/lib:usr/lib:${LD_LIBRARY_PATH}:${BRISTOL}/lib
++export ld_library_pa...@bristol_dir@/lib:/usr/local/lib:/usr/lib:/lib
+
+ export PATH=${PATH}:$BRISTOL/bin:/usr/local/bin
Should that be ${BRISTOL} rather than @bristol_...@?
Regards,
Adam
--
To UNSUBSCRIBE, email to [email protected]
with a subject of "unsubscribe". Trouble? Contact [email protected]
Archive:
http://lists.debian.org/[email protected]
