Bug#598421: CVE-2010-3377 -- security problem in a few files
Andre Espaze
andre.espaze at logilab.fr
Wed Oct 13 15:40:19 UTC 2010
Hello Adam,
>
> There's a security bug in the Debian package for salome due to insecure
> handling of LD_LIBRARY_PATH in a couple of places, bug 598421.
>
> To fix it, I've patched my runSalome script (this does not affect
> upstream runSalome), and several upstream files, and pushed the fixes to
> the alioth repository.
>
> Can you please forward upstream the *-secure-library-path.patch files
> (*=gui, med, yacs)? Please mention that it fixes Common Vulnerabilities
> and Exposures issue ID CVE-2010-3377 , as mentioned in the patches.
Ok, I plan to submit them with the report on the 5.1.4 version. In case
it is more urgent, just let me know.
All the best,
André
More information about the debian-science-maintainers
mailing list