Package: osh Version: 1.7-14 Severity: critical Tags: security Justification: root security hole
Due to a bug in the environment variable substitution code it is possible to inject environment variables such as LD_PRELOAD and gain a root shell. Fully-functional local root exploit here: http://pulltheplug.org/users/core/files/x_osh3.sh Kind Regards, Charles Stevenson -- System Information: Debian Release: testing/unstable APT prefers testing APT policy: (500, 'testing') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.14-corezion Locale: LANG=en_US, LC_CTYPE=en_US (charmap=ISO-8859-1) Versions of packages osh depends on: ii libc6 2.3.5-6 GNU C Library: Shared libraries an ii libncurses5 5.4-9 Shared libraries for terminal hand ii logrotate 3.7.1-2 Log rotation utility osh recommends no packages. -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
