On Mon, Oct 26, 2009 at 05:03:56PM -0400, Michael Gilbert wrote:
> package: eglibc
> version: 2.10.1-2
> severity: important
> tags: security
>
> it has been disclosed that it is possible to execute arbitrary code via
> ldd. this is a pretty obscure attack vector since it requires the user
> to r
package: eglibc
version: 2.10.1-2
severity: important
tags: security
it has been disclosed that it is possible to execute arbitrary code via
ldd. this is a pretty obscure attack vector since it requires the user
to run ldd on an untrusted executable. while unlikely (since users
using ldd should
2 matches
Mail list logo