Oval Definition:oval:org.mitre.oval:def:21943
Revision Date:2014-02-24Version:10
Title:RHSA-2010:0039: gcc and gcc4 security update (Moderate)
Description:ltdl.c in libltdl in GNU Libtool 1.5.x, and 2.2.6 before 2.2.6b, as used in Ham Radio Control Libraries, Q, and possibly other products, attempts to open a .la file in the current working directory, which allows local users to gain privileges via a Trojan horse file.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CESA-2010:0039
CVE-2009-3736
RHSA-2010:0039-01
Platform(s):CentOS Linux 5
Red Hat Enterprise Linux 3
Red Hat Enterprise Linux 5
Product(s):gcc
gcc4
Definition Synopsis
  • Redhat 5 or Centos 5 release
  • The operating system installed on the system is Red Hat Enterprise Linux 5
  • OR The operating system installed on the system is CentOS Linux 5.x
  • AND Packages section
  • gcc-objc++ is earlier than 0:4.1.2-46.el5_4.2
  • OR libgfortran is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj-src is earlier than 0:4.1.2-46.el5_4.2
  • OR libmudflap is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-gfortran is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcc is earlier than 0:4.1.2-46.el5_4.2
  • OR cpp is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-gnat is earlier than 0:4.1.2-46.el5_4.2
  • OR libstdc++ is earlier than 0:4.1.2-46.el5_4.2
  • OR libmudflap-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-objc is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-c++ is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc is earlier than 0:4.1.2-46.el5_4.2
  • OR gcc-java is earlier than 0:4.1.2-46.el5_4.2
  • OR libgnat is earlier than 0:4.1.2-46.el5_4.2
  • OR libgcj is earlier than 0:4.1.2-46.el5_4.2
  • OR libstdc++-devel is earlier than 0:4.1.2-46.el5_4.2
  • OR libobjc is earlier than 0:4.1.2-46.el5_4.2
    • BACK