Oval Definition:oval:org.opensuse.security:def:20104005
Revision Date:2022-06-30Version:1
Title:CVE-2010-4005
Description:

The (1) tomboy and (2) tomboy-panel scripts in GNOME Tomboy 1.5.2 and earlier place a zero-length directory name in the LD_LIBRARY_PATH, which allows local users to gain privileges via a Trojan horse shared library in the current working directory. NOTE: vector 1 exists because of an incorrect fix for CVE-2005-4790.2.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2010-4005
Mitre CVE-2010-4005
SUSE CVE-2010-4005
SUSE-SR:2010:023
Platform(s):openSUSE 11.3
openSUSE Tumbleweed
Product(s):
Definition Synopsis
  • suse113 is installed
  • AND Package Information
  • tomboy-lang less than 1.2.1-3.3.1
  • OR tomboy less than 1.2.1-3.3.1
    • Definition Synopsis
  • openSUSE Tumbleweed is installed
  • AND Package Information
  • tomboy-1.15.5-1.3 is installed
  • OR tomboy-lang-1.15.5-1.3 is installed
    • BACK