648025 – (CVE-2010-4004) VUL-1: CVE-2010-4004: simias: insecure use of LD_LIBRARY_PATH

Bug 648025 (CVE-2010-4004) - VUL-1: CVE-2010-4004: simias: insecure use of LD_LIBRARY_PATH

Summary: VUL-1: CVE-2010-4004: simias: insecure use of LD_LIBRARY_PATH

Status:	RESOLVED WONTFIX

Alias:	CVE-2010-4004

Product:	SUSE Security Incidents
Classification:	Novell Products
Component:	General (show other bugs)
Version:	unspecified
Hardware:	Other Other

Priority:	P4 - Low Severity: Normal
Target Milestone:	---
Assignee:	Srinidhi B S
QA Contact:	Security Team bot

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Clone This Bug

Reported:	2010-10-20 13:39 UTC by Ludwig Nussel
Modified:	2017-07-13 11:10 UTC (History)
CC List:	2 users (show)

See Also:
Found By:	Other
Services Priority:
Business Priority:
Blocker:	---
Marketing QA Status:	---
IT Deployment:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Ludwig Nussel 2010-10-20 13:39:06 UTC

The following file sets LD_LIBRARY_PATH in a way that allows empty elements
which means the current directory is included:

/usr/bin/simias

It's not directly exploitable as there is a "cd /usr/bin" just before launching mono. If simias however changes it's directory and spawns sub processes or loads additional libraries (I don't know if it does that) it would be a problem nevertheless. Fix for Factory sufficient though.

CVE-2010-4004

Comment 1 Swamp Workflow Management 2015-03-30 22:00:16 UTC

bugbot adjusting priority

Comment 2 Johannes Segitz 2017-07-13 11:10:29 UTC

dropped in openSUSE