*** This bug is a security vulnerability ***
You have been subscribed to a public security bug by Marc Deslauriers
(mdeslaur):
Binary package hint: tuxguitar
Originally from Debian #598307
The vulnerability is introduced by an insecure change to
LD_LIBRARY_PATH, and environment variable used by ld.so(8) to look for
libraries on a directory other than the standard paths.
Vulnerable code follows:
/usr/bin/tuxguitar line 129:
export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:$MOZILLA_FIVE_HOME"
** Affects: tuxguitar (Ubuntu)
Importance: Low
Assignee: Micah Gersten (micahg)
Status: In Progress
--
CVE-2010-3385: insecure library loading
https://bugs.edge.launchpad.net/bugs/660923
You received this bug notification because you are a member of Ubuntu Bugs,
which is a direct subscriber.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
