Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 591
Alerts This Week
Warning Icon 1 591

Gentoo: GLSA-200701-18 Critical: libgtk Privilege Heightening Concern

gentoo
Calendar Grey January 23, 2007
Dist Gentoo Esm H88
libtop in Gentoo is exposed to privilege escalation due to inadequate filename management, resulting in a potential for code execution threats.
libgtop improperly handles filenames, possibly allowing for the execution of arbitrary code.

Summary

Gentoo Linux Security Advisory GLSA 200701-17 https://security.gentoo.org/ Severity: Normal Title: libgtop: Privilege escalation Date: January 23, 2007 Bugs: #162169 ID: 200701-17

Synopsis ======= libgtop improperly handles filenames, possibly allowing for the execution of arbitrary code.
Background ========= libgtop facilitates the libgtop_daemon, which is used by GNOME to obtain information about remote systems.
Affected packages ================ ------------------------------------------------------------------- Package / Vulnerable / Unaffected ------------------------------------------------------------------- 1 gnome-base/libgtop < 2.14.6 >= 2.14.6
========== Liu Qishuai discovered that glibtop_get_proc_map_s() in sysdeps/linux/procmap.c does not properly allocate memory for storing a filename, allowing cer...

Read the Full Advisory

Resolution

References

Availability

style>.gentoo_availability{display:block;}

Concerns

Synopsis

Background

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Affected Packages

Impact

Workaround