Dear maintainer, Here is a patch that fixes this issue.
Regards, -- Etienne Millon
# Description: Fix for CVE-2010-3386 # Author: Etienne Millon <etienne.mil...@gmail.com> # Bug-Debian: http://bugs.debian.org/598309 --- a/usttrace +++ b/usttrace @@ -133,7 +133,7 @@ if [ "$arg_preload_libust" = "1" ]; then if [ -n "${LIBUST_PATH%libust.so}" ] ; then - export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:${LIBUST_PATH%libust.so}" + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+$LD_LIBRARY_PATH:}${LIBUST_PATH%libust.so}" fi export LD_PRELOAD="$LD_PRELOAD:$LIBUST_PATH" fi @@ -141,7 +141,7 @@ if [ "$arg_ld_std_ust" = "1" ]; then if [ -n "$${LIBUST_PATH%libust.so}" ] ; then - export LD_LIBRARY_PATH="$LD_LIBRARY_PATH:${LIBUST_PATH%libust.so}" + export LD_LIBRARY_PATH="${LD_LIBRARY_PATH:+$LD_LIBRARY_PATH:}${LIBUST_PATH%libust.so}" fi fi
signature.asc
Description: Digital signature
