Gentoo: GLSA-200701-18 Critical: libgtk Privilege Heightening Concern
gentoo
January 23, 2007
libgtop improperly handles filenames, possibly allowing for the execution of arbitrary code.
Summary
Gentoo Linux Security Advisory GLSA 200701-17
https://security.gentoo.org/
Severity: Normal
Title: libgtop: Privilege escalation
Date: January 23, 2007
Bugs: #162169
ID: 200701-17
Synopsis
=======
libgtop improperly handles filenames, possibly allowing for the
execution of arbitrary code.
Background
=========
libgtop facilitates the libgtop_daemon, which is used by GNOME to
obtain information about remote systems.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 gnome-base/libgtop < 2.14.6 >= 2.14.6
==========
Liu Qishuai discovered that glibtop_get_proc_map_s() in
sysdeps/linux/procmap.c does not properly allocate memory for storing a
filename, allowing cer...
Topics Covered
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Topics Covered
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!