Alerts This Week
Warning Icon 1 727
Alerts This Week
Warning Icon 1 727

Scientific Linux SL5.x: CVE-2010-0826 Moderate nss_db Threat

Calendar Apr 14, 2010 User Avatar LinuxSecurity Advisories
1 min read
Scientific Large Esm H500
Topics%20covered

Topics Covered

security advisory moderate severity local threat nss_db Scientific Linux
Moderate: nss_db security update 
Date: Wed, 14 Apr 2010 12:02:20 -0500
Reply-To: Troy Dawson 
Sender: Security Errata for Scientific Linux
 
From: Troy Dawson 
Subject: Security ERRATA Moderate: nss_db on SL5.x i386/x86_64
Comments: To: "This email address is being protected from spambots. You need JavaScript enabled to view it."
 

Synopsis:	Moderate: nss_db security update
Issue date:	2010-04-13
CVE Names:	CVE-2010-0826

It was discovered that nss_db did not specify a path to the directory to
be used as the database environment for the Berkeley Database library,
causing it to use the current working directory as the default. This
could possibly allow a local attacker to obtain sensitive information.
(CVE-2010-0826)

SL 5.x

 SRPMS:
nss_db-2.2-35.4.el5_5.src.rpm
 i386:
nss_db-2.2-35.4.el5_5.i386.rpm
 x86_64:
nss_db-2.2-35.4.el5_5.i386.rpm
nss_db-2.2-35.4.el5_5.x86_64.rpm

-Connie Sieh
-Troy Dawson
Your message here