Bug#598308: vdr-dbg: CVE-2010-3387: insecure library loading (NMU 1.6.0-19.1)
Julien Cristau
jcristau at debian.org
Mon Oct 18 10:49:39 UTC 2010
On Mon, Oct 18, 2010 at 13:42:43 +0300, Jari Aalto wrote:
> + * debian/vdrleaktest
> + - Remove extra colon from LD_LIBRARY_PATH and improve security
> + by cleaning LD_LIBRARY_PATH with new function Pathclean().
> + (normal, security, reopened; Closes: #598308).
> +
That's not "improve security", that's "add obfuscation". Just remove
the freaking colon...
Cheers,
Julien
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-vdr-dvb-devel/attachments/20101018/6410cf11/attachment.pgp>
More information about the pkg-vdr-dvb-devel
mailing list